Connect with us

Hi, what are you looking for?


CISA urges orgs to patch actively exploited Windows SeriousSAM bug

CISA headpic

CISA urges orgs to patch actively exploited Windows SeriousSAM bug

The U.S. Cybersecurity & Infrastructure Security Agency (CISA) has added to the catalog of vulnerabilities another 15 security issues actively used in cyberattacks.

CISA’s warning about these vulnerabilities serves as a wake-up call to all system administrators that they need to prioritize installing security updates to protect their organizations’ networks.

Failing to do so turns the company into a target for threat actors, who could breach digital premises, compromise data or gain access to sensitive accounts.

The 15 flaws highlighted this time are a mix of old and new, ranging from 2014 to 2021, as detailed in the table below.

CVE ID Description Patch Deadline
CVE-2021-36934 Microsoft Windows SAM Local Privilege Escalation Vulnerability 2/24/2022
CVE-2020-0796 Microsoft SMBv3 Remote Code Execution Vulnerability 8/10/2022
CVE-2018-1000861 Jenkins Stapler Web Framework Deserialization of Untrusted Data 8/10/2022
CVE-2017-9791 Apache Struts 1 Improper Input Validation Vulnerability 8/10/2022
CVE-2017-8464 Microsoft Windows Shell (.lnk) Remote Code Execution 8/10/2022
CVE-2017-10271 Oracle Corporation WebLogic Server Remote Code Execution 8/10/2022
CVE-2017-0263 Microsoft Win32k Privilege Escalation Vulnerability 8/10/2022
CVE-2017-0262 Microsoft Office Remote Code Execution Vulnerability 8/10/2022
CVE-2017-0145 Microsoft SMBv1 Remote Code Execution Vulnerability 8/10/2022
CVE-2017-0144 Microsoft SMBv1 Remote Code Execution Vulnerability 8/10/2022
CVE-2016-3088  Apache ActiveMQ Improper Input Validation Vulnerability 8/10/2022
CVE-2015-2051 D-Link DIR-645 Router Remote Code Execution 8/10/2022
CVE-2015-1635 Microsoft HTTP.sys Remote Code Execution Vulnerability 8/10/2022
CVE-2015-1130 Apple OS X Authentication Bypass Vulnerability 8/10/2022
CVE-2014-4404 Apple OS X Heap-Based Buffer Overflow Vulnerability 8/10/2022

The most recent one, CVE-2021-36934, is a Microsoft Windows SAM (Security Accounts Manager) vulnerability that allows anyone to access the Registry database files on Windows 10 and 11, extract password hashes and gain administrator privileges.

Microsoft fixed this flaw in July 2021, but seven months later there is still a significant number of systems that need to install the update.

CVE-2020-0796 is another security flaw on CISA’s list that admins should address. The bug received the maximum severity score. It consists in erroneous handling of maliciously crafted compressed data packets by SMBv3 and it can be exploited to achieve remote code execution.

Advertisement. Scroll to continue reading.

The flaw can accommodate “wormable” attacks, which means that a threat actor could compromise large networks quicker and with less effort.

Back in March 2020, there were at least 48,000 systems vulnerable to CVE-2020-0796, but, as underlined by CISA’s latest report, the problem continues to persist on many systems.

Of the older flaws, CVE-2015-2051 is a remote code execution bug affecting D-Link DIR-645 routers that continues to deliver to attackers.

The most recent reports of exploitation for the particular vulnerability date from November 2021, when the BotenaGo botnet targeted millions of IoT devices and routers via a set of 33 known exploits, including CVE-2015-2051.

CISA’s list of exploited vulnerabilities is a constant reminder for organizations to deal with outdated and no longer supported hardware that is present in sensitive parts of the network since adversaries do not care how old a vulnerability is as long as it gets them in.

With the addition of the 15 flaws above, CISA’s Known Exploited Vulnerabilities Catalog now lists 367 security vulnerabilities.

Source link

Advertisement. Scroll to continue reading.
Click to comment

Leave a Reply


Top Stories

Shortly after approving Bitcoin (BTC) as legal tender in the Central African Republic (CAR), the local government is moving to provide the digital currency...

Online Business Success

What is the key to turning the strongest sales leads into revenue-generating contracts? Independent research suggests a strong pre-sales operation drives huge value in...

Top Stories

Three years after being ousted as CEO of WeWork, Adam Neumann has jumped on the crypto bandwagon, raising $70 million in the first major...

Top Stories

Bitcoin (BTC) could be in for a return to levels not seen since before its 2020 bull market if history repeats itself. That was...

Top Stories

The need for a clear, balanced concept of the issue was a constant theme at the panel discussion of crypto’s carbon footprint at the...

Social Media

The success of TikTok largely comes down to participatory trends, and the capacity for anyone to not only consume clips in the app, but...


You May Also Like


Introductions get a lot of attention. I’ve explored the topic of how to write them even though as a reader, I always skip them....

SEO Guide

There are all kinds of pictures of the world on the internet, but to find one of these specific pictures that you want to...

Online Business Success

The internet is now our nervous system. We are constantly streaming and buying and watching and liking, our brains locked into the global information...

Online Business Success

You can think of link building in many ways. I like to call it tedious, painful, and a test of patience. It’s also necessary...