⚠️ Early Cybersecurity Alert ⚠️
Actual cybersecurity warning alerts
Urgent: 4 new cybersecurity threats detected. High-severity buffer overflow in Hikvision DVR/NVRs (CVE-2023-28811), critical command execution risks in Fortinet's FortiSIEM and FortiWLM (CVE-2023-36553, CVE-2023-34991), authentication bypass in Red Lion Sixnet RTUs (CVE-2023-42770, CVE-2023-40151), and XSS vulnerability in Liferay Portal (CVE-2023-47797). Immediate patching required.
Desbordamiento de búfer en la gama NVR/DVR de Hikvision 🚨🌐
Date Published: 11/17/2023 📆
Importance: 4 - High 🔥
Affected Resources: DVR Models: iDS-EXXHUHDS-EXXHG, iDS-EXXHQH, DVR-EXXHUH, DVR-EXXHG, DVR-EXXHQH, [etc] 🎯
Description: Sergio Ruiz from the IOActive team has reported a high-severity vulnerability in Hikvision NVR/DVR models. 🛡️
Action Required: Resolved in versions after 08/21/2023. 🛠️
Critical CVEs: Buffer overflow could allow attackers on LAN to send malicious packets and cause failures.
CVE: CVE-2023-28811. 👾
References: Hikvision Security Advisory 🔗
Múltiples vulnerabilidades en productos Fortinet 🚨🌐
Date Published: 11/17/2023 📆
Importance: 5 - Critical 🔥
Affected Resources: FortiSIEM, FortiWLM: multiple affected versions. 🎯
Description: Critical vulnerabilities in FortiSIEM and FortiWLM by Fortinet could allow unauthorized code execution. 🛡️
Action Required: Update to versions: FortiSIEM 7.1.0/7.0.1/6.7.6/6.6.4/6.5.2/6.4.3, FortiWLM 8.6.6/8.5.5. 🛠️
Critical CVEs: Unauthorized commands through API in FortiSIEM and SQL injections in FortiWLM. CVEs: CVE-2023-36553, CVE-2023-34991. 👾
References: Fortiguard - FG-IR-23-135, Fortiguard - FG-IR-23-142 🔗
Múltiples vulnerabilidades en Sixnet RTU de Red Lion 🚨🌐
Date Published: 17/11/2023 📆
Importance: 5 - Crítica 🔥
Affected Resources: Sixnet RTU: ST-IPm-8460, ST-IPm-6350, VT-mIPm-135-D, VT-mIPm-245-D, VT-IPm2m-213-D, VT-IPm2m-113-D. 🎯
Description: Nitsan Litov de Claroty ha informado sobre dos vulnerabilidades críticas en Sixnet RTU que permitirían comandos con altos privilegios. 🛡️
Action Required: Aplicar los últimos parches recomendados por Red Lion. 🛠️
Critical CVEs: Omisión de autenticación y métodos peligrosos expuestos en RTUs. CVEs: CVE-2023-42770, CVE-2023-40151. 👾
References: CISA Advisory 🔗
Vulnerabilidad XSS en Liferay Portal 🚨🌐
Date Published: 11/17/2023 📆
Importance: 5 - Critical 🔥
Affected Resources: Liferay Portal, versions 7.4.3.94 to 7.4.3.95. 🎯
Description: Liferay reports a critical XSS vulnerability affecting its portal. 🛡️
Action Required: Update to Liferay Portal version 7.4.3.96. 🛠️
Critical CVEs: Reflected XSS vulnerability in Liferay Portal allows script injections. CVE: CVE-2023-47797. 👾
References: Liferay Vulnerabilities 🔗
Statistical Analysis & Conclusion:
The four identified vulnerabilities reflect a concerning trend in the diverse range of cyber threats organizations must guard against. The buffer overflow in Hikvision's devices and the command execution vulnerabilities in Fortinet's products highlight the persistent risk in widely-used hardware and network management systems, where exploitation could lead to system control and data compromise. The authentication bypass in Red Lion's RTUs and the XSS vulnerability in Liferay Portal expose the often-overlooked flaws in web-based interfaces and industrial control systems, which could be leveraged for unauthorized access and malicious code injection.
These vulnerabilities share a common criticality in that they all allow for potential unauthorized access or control, underlining the necessity for regular and comprehensive security audits across all facets of an organization’s digital infrastructure. Immediate updates and patches are essential to mitigate these risks, accompanied by a review of security policies and incident response plans to swiftly address any exploitation attempts.