Rewterz

Multiple Apache Products Vulnerabilities

August 22, 2024
Rewterz

North Korean Cybercriminals Use New MoonPeak Trojan in Cyberattacks – Active IOCs

August 22, 2024

Multiple VMware Tanzu Vulnerabilities

Severity

Medium

Analysis Summary

CVE-2024-38809 CVSS:5.3

VMware Tanzu Spring Framework is vulnerable to a denial of service, caused by improper input validation. By sending a specially crafted HTTP request containing ETags from "If-Match" or "If-None-Match" request headers, a remote attacker could exploit this vulnerability to cause a denial of service condition.

CVE-2024-38808 CVSS:7.5

VMware Tanzu Spring Framework is vulnerable to a denial of service, caused by improper input validation. By sending a specially crafted Spring Expression Language (SpEL) expression, a remote attacker could exploit this vulnerability to cause a denial of service condition.

Impact

  • Denial of Service

Indicators of Compromise

CVE

  • CVE-2024-38809
  • CVE-2024-38808

Affected Vendors

VMWare

Affected Products

  • VMware Tanzu Spring Framework 5.3.0
  • VMware Tanzu Spring Framework 6.0.0
  • VMware Tanzu Spring Framework 6.1.0
  • VMware Tanzu Spring Framework 5.3.37
  • VMware Tanzu Spring Framework 6.0.22
  • VMware Tanzu Spring Framework 6.1.11
  • VMware Tanzu Spring Framework 5.3.38

Remediation

Upgrade to the latest version of VMware Tanzu, available from the VMware Website.

CVE-2024-38809

CVE-2024-38808

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.