Article 5ZD0M 2 vulnerabilities with 9.8 severity ratings are under exploit. A 3rd looms

2 vulnerabilities with 9.8 severity ratings are under exploit. A 3rd looms

by
Dan Goodin
from Ars Technica - All content on (#5ZD0M)
caution-tape-800x600.jpeg

Enlarge (credit: Getty Images)

Malicious hackers, some believed to be state-backed, are actively exploiting two unrelated vulnerabilities-both with severity ratings of 9.8 out of a possible 10-in hopes of infecting sensitive enterprise networks with backdoors, botnet software, and other forms of malware.

The ongoing attacks target unpatched versions of multiple product lines from VMware and of BIG-IP software from F5, security researchers said. Both vulnerabilities give attackers the ability to remotely execute malicious code or commands that run with unfettered root system privileges. The largely uncoordinated exploits appear to be malicious, as opposed to benign scans that attempt to identify vulnerable servers and quantify their number.

First up: VMware

On April 6, VMware disclosed and patched a remote code execution vulnerability tracked as CVE-2022-22954 and a privilege escalation flaw tracked as CVE-2022-22960. According to an advisory published on Wednesday by the Cybersecurity and Infrastructure Security Agency, malicious cyber actors were able to reverse engineer the updates to develop an exploit within 48 hours and quickly began exploiting the disclosed vulnerabilities in unpatched devices."

Read 12 remaining paragraphs | Comments

index?i=RtnEmbha2Tg:qQEsiCE5jrw:V_sGLiPB index?i=RtnEmbha2Tg:qQEsiCE5jrw:F7zBnMyn index?d=qj6IDK7rITs index?d=yIl2AUoC8zA
External Content
Source RSS or Atom Feed
Feed Location http://feeds.arstechnica.com/arstechnica/index
Feed Title Ars Technica - All content
Feed Link https://arstechnica.com/
Reply 0 comments