Untitled attachment

Notices where this attachment appears

1. Embed this notice
   screaminggoat (screaminggoat@infosec.exchange)'s status on Thursday, 13-Feb-2025 03:41:54 JST screaminggoat

   in reply to

   Happy #PatchTuesday from Palo Alto Networks (LIKELY ZERO-DAYS):
   (Note: PAN likes to downplay severity by showing the base + threat metrics CVSSv4 score. I listed base score only)

   1. CVE-2025-0113 (CVSSv4.0: 7.6 high) Cortex XDR Broker VM: Unauthorized Access to Broker VM Docker Containers
   2. CVE-2025-0112 (CVSSv4: 6.8 medium) Cortex XDR Agent: Local Windows User Can Disable the Agent
   3. CVE-2025-0110 (CVSSv4.0: 8.6 high) PAN-OS OpenConfig Plugin: Command Injection Vulnerability in OpenConfig Plugin
      • Exploit Maturity: POC 🤔
   4. PAN-SA-2025-0005 GlobalProtect Clientless VPN: Same-Origin Policy Does Not Apply When Using Clientless VPN
   5. PAN-SA-2025-0004 Chromium: Monthly Vulnerability Update (February 2025) (multiple CVEs)
   6. CVE-2025-0109 (CVSSv4: 6.9 medium) PAN-OS: Unauthenticated File Deletion Vulnerability on the Management Web Interface
      • Exploit Maturity: POC 🤔
   7. CVE-2025-0111 (CVSSv4: 7.1 high) PAN-OS: Authenticated File Read Vulnerability in the Management Web Interface
   8. EDIT: NEW! CVE-2025-0108 (CVSSv4: 8.8 high) PAN-OS: Authentication Bypass in the Management Web Interface

   Palo Alto Networks is not aware of any malicious exploitation of this issue.

   My new concern is whether I should say #zeroday for CVE-2025-0110 and 0109. Based on the First criteria for Exploit Maturity:

   Based on threat intelligence sources each of the following must apply:

   • Proof-of-concept is publicly available
   • No knowledge of reported attempts to exploit this vulnerability
   • No knowledge of publicly available solutions used to simplify attempts to exploit the vulnerability

   #paloaltonetworks #infosec #vulnerability #cve #cybersecurity #poc #proofofconcept

2. Embed this notice
   AJ Sadauskas (ajsadauskas@social.vivaldi.net)'s status on Saturday, 25-Jan-2025 20:04:54 JST AJ Sadauskas

   So I spent part of today trying to set up an NFS mount on an Ubuntu server earlier today, and kept running into problems.

   Fortunately, I found out what was causing the issue.

   To hopefully save someone else some trouble, I want to share what I discovered in case anyone else runs into the same issue.

   My first step was to run the command "sudo apt nfs-kernal-server" on the Linux server.

   I kept getting the error message "Unable to locate package nfs-kernal-server".

   I tried a bunch of things. Checking repositories. Checking router settings. Checking firewalls. Nothing seemed to work!

   Then I noticed the source of my troubles.

   Turns out the command I was looking for was "sudo apt nfs-kernel-server". With an "e" in kernel.

   So what does it mean if you run into this same issue?

   Probably that you grew up with a Commodore 64 or an Amiga as your first computer.

   #Amiga #Linux #SysAdmin #Commodore #RetroComputer #RetroComputing #C64 #Ubuntu