Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://cyberplace.social/users/GossiTheDog/statuses/111766180284989498">Kevin Beaumont (gossithedog@cyberplace.social)'s status on Tuesday, 16-Jan-2024 23:49:43 JST</a><a href="https://cyberplace.social/@GossiTheDog" title="gossithedog@cyberplace.social"><img src="https://gnusocial.jp/avatar/38360-48-20250225114715.webp" width="48" height="48" alt="Kevin Beaumont" style="position: absolute; left: 0; top: 0;">Kevin Beaumont</a><div><a href="https://cyberplace.social/@GossiTheDog/111765947467052650" rel="in-reply-to">in reply to</a></div></section><article><p>Complete exploitation info for <a href="https://cyberplace.social/tags/ConnectAround" rel="tag">#ConnectAround</a> is now public. <a href="https://attackerkb.com/topics/AdUh6by52K/cve-2023-46805" rel="nofollow noreferrer">https://attackerkb.com/topics/AdUh6by52K/cve-2023-46805</a></p><p>It’s a chaotic mix of ../../ directory traversal and open APIs… if you haven’t applied the mitigations you’re going to have a really bad time as ransomware groups will jump on the train soon. <a href="https://cyberplace.social/tags/threatintel" rel="tag">#threatintel</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/2587727#notice-5141426">In conversation</a><time datetime="2024-01-16T23:49:43+09:00" title="Tuesday, 16-Jan-2024 23:49:43 JST">Tuesday, 16-Jan-2024 23:49:43 JST</time> <span>from <span><a href="https://cyberplace.social/@GossiTheDog/111766180284989498" rel="external" title="Sent from cyberplace.social via ActivityPub">cyberplace.social</a></span></span><a href="https://cyberplace.social/@GossiTheDog/111766180284989498">permalink</a><h4>Attachments</h4><ol><li><label><a rel="external" href="https://gnusocial.jp/attachment/2120997">Untitled attachment</a></label><br><a href="https://cyberplace.social/system/media_attachments/files/111/766/180/009/335/003/original/6cc99c1170bfda8d.jpeg" rel="external">https://cyberplace.social/system/media_attachments/files/111/766/180/009/335/003/original/6cc99c1170bfda8d.jpeg</a></li><li><article><header><div>Domain not in remote thumbnail source whitelist: attackerkb.com</div><h5><a href="https://attackerkb.com/topics/AdUh6by52K/cve-2023-46805It">CVE-2023-46805 | AttackerKB</a></h5><div></div></header><div>An authentication bypass vulnerability in the web component of Ivanti ICS 9.x, 22.x and Ivanti Policy Secure allows a remote attacker to access restricted reso…</div><footer></footer></article></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
Kevin Beaumont (gossithedog@cyberplace.social)'s status on Tuesday, 16-Jan-2024 23:49:43 JST Kevin Beaumont
in reply to
Complete exploitation info for #ConnectAround is now public. https://attackerkb.com/topics/AdUh6by52K/cve-2023-46805
It’s a chaotic mix of ../../ directory traversal and open APIs… if you haven’t applied the mitigations you’re going to have a really bad time as ransomware groups will jump on the train soon. #threatintel
In conversationTuesday, 16-Jan-2024 23:49:43 JST from cyberplace.socialpermalink
Attachments
1. Untitled attachment
  https://cyberplace.social/system/media_attachments/files/111/766/180/009/335/003/original/6cc99c1170bfda8d.jpeg
2. Domain not in remote thumbnail source whitelist: attackerkb.com
  CVE-2023-46805 | AttackerKB
  An authentication bypass vulnerability in the web component of Ivanti ICS 9.x, 22.x and Ivanti Policy Secure allows a remote attacker to access restricted reso…

Public

Embed Notice

HTML Code

Corresponding Notice