Rewterz Threat Advisory – Multiple Microsoft Edge (Chromium-based) Vulnerabilities

Rewterz Threat Alert – North Korean APT Kimsuky Aka Black Banshee – Active IOCs

September 18, 2023

Rewterz Threat Advisory – ICS: Multiple Siemens Products Vulnerabilities

September 18, 2023

Rewterz Threat Advisory – Multiple Microsoft Edge (Chromium-based) Vulnerabilities

Severity

High

Analysis Summary

CVE-2023-36735 CVSS:9.6

Microsoft Edge (Chromium-based) could allow a remote attacker to gain elevated privileges on the system. By persuading a victim to visit a specially crafted Web site, an attacker could exploit this vulnerability to execute arbitrary code with higher privileges.

CVE-2023-36727 CVSS:6.1

Microsoft Edge (Chromium-based) could allow a remote attacker to conduct spoofing attacks.

CVE-2023-36562 CVSS:7.1

Impact

Privilege Escalation
Gain Access

Indicators Of Compromise

CVE

CVE-2023-36735
CVE-2023-36727
CVE-2023-36562

Affected Vendors

Microsoft

Affected Products

Microsoft Edge (Chromium-based) 117.0

Remediation

Use Microsoft Automatic Update to apply the appropriate patch for your system, or the Microsoft Security Update Guide to search for available patches.

CVE-2023-36735

CVE-2023-36727

CVE-2023-36562

Rewterz Threat Alert – North Korean APT Kimsuky Aka Black Banshee – Active IOCs

Rewterz Threat Advisory – ICS: Multiple Siemens Products Vulnerabilities

Rewterz Threat Advisory – Multiple Microsoft Edge (Chromium-based) Vulnerabilities

Severity

Analysis Summary

Impact

Indicators Of Compromise

CVE

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan