Cybersecurity firm Development Micro has launched patches and hotfixes to handle a vital security flaw in Apex One and Fear-Free Enterprise Safety options for Home windows that has been actively exploited in real-world assaults.
Tracked as CVE-2023-41179 (CVSS rating: 9.1), it pertains to a third-party antivirus uninstaller module that is bundled together with the software program. The whole listing of impacted merchandise is as follows –
- Apex One – model 2019 (on-premise), mounted in SP1 Patch 1 (B12380)
- Apex One as a Service – mounted in SP1 Patch 1 (B12380) and Agent model 14.0.12637
- Fear-Free Enterprise Safety – model 10.0 SP1, mounted in 10.0 SP1 Patch 2495
- Fear-Free Enterprise Safety Companies – mounted in July 31, 2023, Month-to-month Upkeep Launch
Development Micro stated {that a} profitable exploitation of the flaw may enable an attacker to control the part to execute arbitrary instructions on an affected set up. Nonetheless, it requires that the adversary already has administrative console entry on the goal system.
The corporate additionally warned that it has “noticed at the least one lively try of potential exploitation of this vulnerability within the wild,” making it important that customers transfer shortly to use the patches.
As a workaround, it is recommending that prospects restrict entry to the product’s administration console to trusted networks.
CISA Provides 9 Flaws to KEV Catalog
The event comes because the U.S. Cybersecurity and Infrastructure Safety Company (CISA) added 9 flaws to its Identified Exploited Vulnerabilities (KEV) catalog, citing proof of lively exploitation within the wild –
- CVE-2014-8361 (CVSS rating: N/A) – Realtek SDK Improper Enter Validation Vulnerability
- CVE-2017-6884 (CVSS rating: 8.8) – Zyxel EMG2926 Routers Command Injection Vulnerability
- CVE-2021-3129 (CVSS rating: 9.8) – Laravel Ignition File Add Vulnerability
- CVE-2022-22265 (CVSS rating: 7.8) – Samsung Cellular Units Use-After-Free Vulnerability
- CVE-2022-31459 (CVSS rating: 6.5) – Owl Labs Assembly Owl Insufficient Encryption Energy Vulnerability
- CVE-2022-31461 (CVSS rating: 6.5) – Owl Labs Assembly Owl Lacking Authentication for Important Perform Vulnerability
- CVE-2022-31462 (CVSS rating: 8.8) – Owl Labs Assembly Owl Use of Exhausting-coded Credentials Vulnerability
- CVE-2022-31463 (CVSS rating: 7.1) – Owl Labs Assembly Owl Improper Authentication Vulnerability
- CVE-2023-28434 (CVSS rating: 8.8) – MinIO Safety Characteristic Bypass Vulnerability
It is value noting {that a} fifth flaw impacting Owl Labs Assembly Owl (CVE-2022-31460, CVSS rating: 7.4), a case of hard-coded credentials, was beforehand added to the KEV catalog on June 8, 2022, merely days after Modzero disclosed particulars of the failings.
“By exploiting the vulnerabilities[…], an attacker can discover registered gadgets, their knowledge, and house owners from all over the world,” the Swiss security consultancy agency stated on the time.
“Attackers can even entry confidential screenshots of whiteboards or use the Owl to get entry to the proprietor’s community. The PIN safety, which protects the Owl from unauthorized use, might be circumvented by an attacker by (at the least) 4 completely different approaches.”
Much more troublingly, the gadgets might be changed into rogue wi-fi community gateways to an area company community remotely through Bluetooth by arbitrary customers and might be abused to behave as a backdoor to house owners’ native networks. It is at the moment not identified how these vulnerabilities are exploited within the wild.
The security weak spot impacting MinIO has come beneath abuse in latest months, with Safety Joes revealing this month that an unnamed menace actor is exploiting it along side CVE-2023-28432 (CVSS rating: 7.5) to realize unauthorized code execution on prone servers and drop follow-on payloads.
