Rewterz Threat Advisory – CVE-2019-14835 – Linux Kernel vhost function privilege escalation Vulnerability

Rewterz Threat Alert – Magecart Skimming Attack Targets Mobile Users

September 19, 2019

Rewterz Threat Advisory – Multiple Vulnerabilities in Google Chrome

September 20, 2019

Rewterz Threat Advisory – CVE-2019-14835 – Linux Kernel vhost function privilege escalation Vulnerability

Severity

High

Analysis Summary

Linux could allow a local guest-authenticated attacker to gain elevated privileges on the system, caused by a buffer overflow in the vhost/vhost_net kernel module. By passing descriptors with invalid length, an authenticated attacker could exploit this vulnerability to gain elevated privileges on the host system.

Impact

Privilege access

Affected Vendors

Linux

Remediation

Upgrade to the version of the 5.3 kernel.

Rewterz Threat Alert – Magecart Skimming Attack Targets Mobile Users

Rewterz Threat Advisory – Multiple Vulnerabilities in Google Chrome

Rewterz Threat Advisory – CVE-2019-14835 – Linux Kernel vhost function privilege escalation Vulnerability

Severity

Analysis Summary

Impact

Affected Vendors

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan