Rewterz

Rewterz Threat Alert – FileCry Ransomware

July 9, 2020
Rewterz

Rewterz Threat Advisory – Citrix Multiple Security Vulnerabilities

July 9, 2020

Rewterz Threat Advisory – CVE-2020-0592 – F5 BIG-IP remote command execution vulnerability

Severity

High

Analysis Summary

An unauthenticated attacker with network access to the TMUI may be able to execute arbitrary system commands, create or delete files, disable services, and subsequently execute arbitrary code with high privileges such as root. An authenticated user is also be able to perform unexpected activities such as changing configuration files on a vulnerable device. The vulnerability can be abused to achieve arbitrary code execution on the target device with root privileges.

Impact

Arbitrary code execution

Affected Vendors

F5

Affected Products

Traffic Management User Interface (TMUI)

Remediation

It is recommended to upgrade to the latest secure and stable software provided by F5.

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.