Sunday, November 24, 2024
CISA Exploit List

CISA Active Exploits – May 2023

by Artie Kaye

The Cybersecurity and Infrastructure Agency (CISA) added a host of new exploits over the last two months which are must patch issues. While these instructions are meant for governmental agencies, it would be prudent to address them if they apply. Below are the CVE numbers, what products are affected, and official links the various companies have provided highlighting the problem or their solutions.

All links are off-site references that open in news tabs or windows.

    Company                  CVE                        Platform                                                                  Details                                                        
AdobeCVE-2023-26360ColdFusionhttps://helpx.adobe.com/security/products/coldfusion/apsb23-25.html
AndroidCVE-2023-20963Frameworkhttps://source.android.com/docs/security/bulletin/2023-03-01
ApacheCVE-2021-45046Log4j2https://logging.apache.org/log4j/2.x/security.html
CVE-2022-33891Sparkhttps://lists.apache.org/thread/p847l3kopoo5bjtmxrcwk21xp6tjxqlc
AppleCVE-2019-8526macOShttps://support.apple.com/en-us/HT209600
CVE-2023-28205Multiple Productshttps://support.apple.com/en-us/HT213720
https://support.apple.com/en-us/HT213721
https://support.apple.com/en-us/HT213722
https://support.apple.com/en-us/HT213723
CVE-2023-28206https://support.apple.com/en-us/HT213720
https://support.apple.com/en-us/HT213721
CVE-2021-30900iPadOS
iOS
https://support.apple.com/en-us/HT21286
https://support.apple.com/en-us/HT212868
https://support.apple.com/kb/HT212872
ArmCVE-2023-26083
CVE-2022-38181
CVE-2022-22706
Mali Graphics Processing Unithttps://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities
CiscoCVE-2017-6742IOS and IOS XE Softwarehttps://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170629-snmp
FortinetCVE-2022-41328FortiOShttps://www.fortiguard.com/psirt/FG-IR-22-369
FortraCVE-2022-39197
CVE-2022-42948
Cobalt Strikehttps://www.cobaltstrike.com/blog/out-of-band-update-cobalt-strike-4-7-1/
https://www.cobaltstrike.com/blog/out-of-band-update-cobalt-strike-4-7-2/
GoogleCVE-2023-2136
CVE-2022-3038
Chromehttps://chromereleases.googleblog.com/2023/04/stable-channel-update-for-desktop_18.html
https://chromereleases.googleblog.com/2022/08/stable-channel-update-for-desktop_30.html
CVE-2023-2033Chromium V8 Enginehttps://chromereleases.googleblog.com/2023/04/stable-channel-update-for-desktop_14.html
LinuxCVE-2023-0266Kernelhttps://git.kernel.org/pub/scm/linux/kernel/git/stable/stable-queue.git/tree/queue-5.10/alsa-pcm-move-rwsem-lock-inside-snd_ctl_elem_read-to-prevent-uaf.patch?id=72783cf35e6c55bca84c4bb7b776c58152856fd4
MicrosoftCVE-2023-29336Win32khttps://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-29336
CVE-2019-1388
CVE-2023-24880
CVE-2023-28252
Windowshttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1388
https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-24880
https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-28252
CVE-2013-3163Internet Explorerhttps://learn.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-055
CVE-2023-23397Officehttps://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-23397
https://msrc.microsoft.com/blog/2023/03/microsoft-mitigates-outlook-elevation-of-privilege-vulnerability
MinIOCVE-2023-28432MinIOhttps://github.com/minio/minio/security/advisories/GHSA-6xvq-wj2x-3h3q
Novi SurveyCVE-2023-29492Novi Surveyhttps://novisurvey.net/blog/novi-survey-security-advisory-apr-2023.aspx
OracleCVE-2023-21839WebLogic Serverhttps://www.oracle.com/security-alerts/cpujan2023.html
PaperCutCVE-2023-27350MF/NGhttps://www.papercut.com/kb/Main/PO-1216-and-PO-1219
PlexCVE-2020-5741Media Serverhttps://forums.plex.tv/t/security-regarding-cve-2020-5741/586819
SambaCVE-2017-7494Sambahttps://www.samba.org/samba/security/CVE-2017-7494.html
TechlibCVE-2023-28632 through 28852 (8 Issues)GLPISummary of fixes covered in vendor link below:
https://glpi-project.org/new-version-glpi-10-0-7/
TP-LinkCVE-2023-1389Archer AX21https://www.tp-link.com/us/support/download/archer-ax21/v3/#Firmware
VeritasCVE-2021-27876
CVE-2021-27877
CVE-2021-27878
Backup Exec Agenthttps://www.veritas.com/support/en_US/security/VTS21-001
XStreamCVE-2021-39144XStreamhttps://www.vmware.com/security/advisories/VMSA-2022-0027.html
https://x-stream.github.io/CVE-2021-39144.html
ZimbraCVE-2022-27926Collaborationhttps://wiki.zimbra.com/wiki/Security_Center
ZohoCVE-2022-28810Manage Enginehttps://www.manageengine.com/products/self-service-password/advisory/CVE-2022-28810.html

For a more comprehensive list of all vulnerabilities, visit cisa.gov (Opens in a new tab/window.)