Generic selectors
Exact matches only
Search in title
Search in content
Post Type Selectors
Close Menu
Latest News
Human Rights Watch argues for Westernization of Saudi ArabiaSevan Island beaches: Armenia’s “Blue Pearl” is ready to receive vacationersWhat I learned about change management while renovating my homeShane Negrinжавахкская диаспора России призывает власти урегулировать проблWWE: Resultados Smackdown Live 19 dezembro – Impacto GlobalWhatsapp latest status | Sebugiমানবতাবিরোধী অপরাধের বিচারপ্রক্রিয়া থেমে Parameters | Spring 2023 > U.S. Military War CollegeChina’s future military capabilities > U.S. Army War CollegeThe American and the Dragon: Confederate War Lessons from the Boxer Rebellion > U.S. Military War CollegeCaribbean Security Challenges: Threats, Migration, and International Cooperation > U.S. Military War CollegeWe don’t really know which NATO allies are stepping up. > U.S. Military War CollegeNATO national defense demands improvements on the Eastern Front > U.S. Army War CollegeAnnual Forecast of the Strategic Security Environment for 2023 > U.S. Military War CollegeParameters | Winter 2023-24 > U.S. Military War CollegeDeterring war without threatening war: Repairing the West’s risk-averse approach to deterrence > U.S. Army War ColHigh North International Competition: Kingston Conference on International Security 2022 > U.S. Military War CollegeParameters | Spring 2024 > U.S. Military War CollegeResearch Handbook on NATO “Collective Defense” > U.S. Military War CollegeEmerging Technologies and Terrorism: An American Perspective > U.S. Military War CollegeArgentina: Security Challenges and the Government Response > US Army War CollegeBook Review: Thank You for Your Service: The Causes and Consequences of Public Confidence in the U.S. Military > U.S. ArActive on both sides of the U.S.-China conflict > U.S. Army War CollegeParameters | Summer 2024 > U.S. Military War CollegeA Call to Action: Lessons from Ukraine for Future Military > U.S. Military War CollegeComments Isn’t it safe?Lieutenant General Robert C. Richardson, Jr.: Commander, Central Pacific Theater Army, Admiral Chester W. Nimitz 1943-19Annual Forecast of the Strategic Security Environment for 2024 > U.S. Army War CollegeNATO’s 75th Anniversary Strategic Concept > U.S. Military War CollegeDurdum Sustum GülümsedimDeneme Günlüğü | Donanim Harbor ForumSatellites in the Russia-Ukraine War > U.S. Military War CollegeParameters | Fall 2024 > U.S. Military War CollegeThe Growing Significance of China-Russia Defense Cooperation > US Army War College
Avice Intelligence and Security

U.S. CISA adds BeyondTrust PRA and RS and Qlik Sense flaws to its Known Exploited Vulnerabilities catalog

chief editorBy No Comments2 Mins Read


U.S. CISA adds BeyondTrust PRA and RS and Qlik Sense flaws to its Known Exploited Vulnerabilities catalog

Pierluigi Paganini
January 13, 2025

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds BeyondTrust PRA and RS and Qlik Sense flaws to its Known Exploited Vulnerabilities catalog.

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added the following vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog:

CVE-2024-12686 (CVSS score of 6.6) The flaw is an OS Command Injection Vulnerability in BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS). An attacker with existing administrative privileges can exploit the flaw to upload a malicious file. Successful exploitation of this vulnerability can allow a remote attacker to execute underlying operating system commands within the context of the site user. In early December 2024, the privileged access management company BeyondTrust suffered a cyberattack after threat actors breached some of its Remote Support SaaS instances.

In December, China-linked threat actors breached the U.S. Treasury Department via a compromised remote support platform. The Treasury Department discovered the security breach on December 8th from its vendor BeyondTrust, according to a letter to lawmakers.

The investigation into the cyberattack against BeyondTrust led to the discovery of the zero-day vulnerabilities CVE-2024-12356 and CVE-2024-12686. Threat actors exploited the flaws to take over Remote Support SaaS instances, including the Treasury Department’s one.

CVE-2023-48365 (CVSS score of 9.6) is a Qlik Sense HTTP Tunneling Vulnerability. TheHTTP tunneling vulnerability enables attackers to escalate privileges and send HTTP requests to the backend server.

According to Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities, FCEB agencies have to address the identified vulnerabilities by the due date to protect their networks against attacks exploiting the flaws in the catalog.

Experts also recommend private organizations review the Catalog and address the vulnerabilities in their infrastructure.

CISA orders federal agencies to fix this vulnerability by February 3, 2025.

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, CISA Known Exploited Vulnerabilities catalog)





Source link

Branding Banner 728x90

Trusted source for breaking news and journalism. Avice News Trust is a leading media organization dedicated to delivering reliable news coverage and journalism. As a digital news platform, we focus on breaking news, current events, and in-depth news reporting. Our commitment to media trust ensures our audience receives accurate and timely updates. Explore a wide range of news articles and stay informed with Avice News Trust, your dependable news network.

Related Posts

Add A Comment
Leave A Reply