Rewterz Threat Advisory – CVE-2022-42735 – Apache ShenYu Vulnerability

Rewterz Threat Advisory – CVE-2023-20009 – Cisco ESA and Secure Email and Web Manager Vulnerability

February 16, 2023

Rewterz Threat Alert – Aurora Stealer – Active IOCs

February 16, 2023

Rewterz Threat Advisory – CVE-2022-42735 – Apache ShenYu Vulnerability

Severity

High

Analysis Summary

CVE-2022-42735

Apache ShenYu could allow a remote authenticated attacker to gain elevated privileges on the system, caused by improper privilege management. An attacker could exploit this vulnerability to create users with higher privileges than their own.

Impact

Privilege Escalation

Indicators Of Compromise

CVE

CVE-2022-42735

Affected Vendors

Apache

Affected Products

Apache ShenYu 2.5.0

Remediation

Refer to the Apache Website for patch, upgrade or suggested workaround information.

Apache Website

Rewterz Threat Advisory – CVE-2023-20009 – Cisco ESA and Secure Email and Web Manager Vulnerability

Rewterz Threat Alert – Aurora Stealer – Active IOCs

Rewterz Threat Advisory – CVE-2022-42735 – Apache ShenYu Vulnerability

Severity

Analysis Summary

Impact

Indicators Of Compromise

CVE

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan