Rewterz Threat Advisory – Multiple Microsoft Azure Vulnerabilities

April 15, 2021

Rewterz Threat Advisory – ICS: Siemens Nucleus Products IPv6 Stack

April 15, 2021

Rewterz Threat Advisory – CVE-2021-1450 – Cisco AnyConnect Secure Mobility Client Denial of Service Vulnerability

April 15, 2021

Severity

Medium

Analysis Summary

CVE-2021-1450

Cisco AnyConnect Secure Mobility Client could allow an authenticated, local attacker to cause a denial of service (DoS) condition on an affected device. To exploit this vulnerability, the attacker would need to have valid credentials on the device. An attacker could exploit this vulnerability by sending one or more crafted IPC messages to the AnyConnect process on an affected device. A successful exploit could allow the attacker to stop the AnyConnect process, causing a DoS condition on the device.

Impact

Unauthorized Access

Affected Vendors

Cisco

Affected Products

Anyconnect Secure Mobility Client For Windows
AnyConnect Secure Mobility Client For MacOS
AnyConnect Secure Mobility Client For Linux

Remediation

Refer to cisco advisory for the complete list of affected product and their respective patches

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-anyconnect-dos-55AYyxYr

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

SuperCard X Malware Exploiting NFC for Financial Fraud – Active IOCs

Zoom Remote Control Feature Exploited to Gain Access

Microsoft Entra Account Lockouts Triggered by Token Logging Error

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Rewterz Threat Advisory – Multiple Microsoft Azure Vulnerabilities

Rewterz Threat Advisory – ICS: Siemens Nucleus Products IPv6 Stack

The Wait Is Over!

The Rewterz Annual Threat Intelligence Report 2024 is finally here.