Rewterz

Rewterz Threat Advisory – Red Hat Enterprise Linux 7.7

June 30, 2020
Rewterz

Rewterz Threat Alert – Gamaredon Hackers Use Outlook Macros to Spread Malware

July 1, 2020

Rewterz Threat Advisory – CVE-2020-8019 – SuSE Linux Enterprise Debuginfo Symlink privilege escalation vulnerability

Severity

Medium

Analysis Summary

A vulnerability classified as critical was found in SuSE Linux Enterprise Debuginfo, Linux Enterprise Module for Legacy Software, Linux Enterprise Point of Sale, Linux Enterprise Server, Linux Enterprise Server for SAP, Linux Enterprise Debuginfo and Linux Enterprise Module for Legacy Software (Operating System). Affected by this vulnerability is an unknown function of the component Symlink Handler. The manipulation with an unknown input leads to a privilege escalation vulnerability.The successful exploitation requires a single authentication.

Impact

Privilege Escalation

Affected Products

  • SuSE Linux Enterprise Debuginfo
  • Linux Enterprise Module for Legacy Software
  • Linux Enterprise Point of Sale
  • Linux Enterprise Server
  • Linux Enterprise Server for SAP
  • Linux Enterprise Debuginfo
  • Linux Enterprise Module for Legacy Software (Operating System)

Remediation

Upgrade all affected products to latest versions.

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.