March 12, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Alert – Gh0st RAT – A Decades-Old Open-Source Remote Administration Tool (RAT) Seen Active In Recent Phishing Campaign – Active IOCs
May 1, 2023Rewterz Threat Alert – STOP (DJVU) Ransomware – Active IOCs
May 2, 2023Rewterz Threat Alert – Gh0st RAT – A Decades-Old Open-Source Remote Administration Tool (RAT) Seen Active In Recent Phishing Campaign – Active IOCs
May 1, 2023Rewterz Threat Alert – STOP (DJVU) Ransomware – Active IOCs
May 2, 2023
Severity
Low
Analysis Summary
CVE-2023-30857
Node.js @aedart/support module could allow a remote attacker to bypass security restrictions, caused by a prototype pollution flaw in the metadata record. By adding or modifying properties of Object.prototype using a __proto__ or constructor payload, an attacker could exploit this vulnerability to set or alter the metadata.
Impact
- Security Bypass
Indicators Of Compromise
CVE
- CVE-2023-30857
Affected Vendors
Node.js
Affected Products
- Node.js @aedart/support 0.6.0
Remediation
Upgrade to the latest version of @aedart/support , available from the Ion GIT Repository.