skip to Main Content

Cybersecurity, CISA adds 7 new vulnerabilities in the exploited list

CISA adds 7 new vulnerabilities in the exploited list. They are: CVE-2022-29464, CVE-2022-26904, CVE-2022-21919, CVE-2022-0847, CVE-2021-41357, CVE-2021-40450 and CVE-2019-1003029. Patch the flaws ASAP!

Cybercrime actors are using seven new flaws to target organizations worldwide. The US Cybersecurity & Infrastructure Security Agency (CISA) added them to the “Known Exploited Vulnerabilities Catalog”. They are: CVE-2022-29464, CVE-2022-26904, CVE-2022-21919, CVE-2022-0847, CVE-2021-41357, CVE-2021-40450 and CVE-2019-1003029. According to Bleeping Computer, The WSO2 vulnerability tracked as CVE-2022-29464 was used in attacks to deploy web shells and coinminers. The Windows ‘User Profile Service Privilege Escalation’ vulnerabilities tracked as CVE-2022-21919 and CVE-2022-26904 has been used by ransomware gangs to spread laterally through a Windows domain. For the Linux privilege escalation vulnerability (DirtyPipe, CVE-2022-0847) numerous proof-of-concept exploits were released, allowing users to gain root privileges quickly. For the CVE-2021-40450 and CVE-2021-41357 ‘Microsoft Win32k Privilege Escalation’ there is no public mention of these being exploited in the wild. Finally, the ‘Jenkins Script Security Plugin Sandbox Bypass’ bug (CVE-2019-1003029), has been used in the past by the Capoae Malware to deploy XMRig cryptominers.

Back To Top