Rewterz Threat Alert – Raccoon Infostealer – Active IOCs

June 22, 2021

Rewterz Threat Alert – Remcos RAT – Active IOCs

June 22, 2021

Rewterz Threat Advisory – CVE-2021-26295 – Apache OFBiz Insecure Deserialization Vulnerability

June 22, 2021

Severity

High

Analysis Summary

CVE-2021-26295

A remote code execution vulnerability exists in Apache OFBiz prior to 17.12.06 due to the Deserialization of Untrusted Data. An unauthenticated, remote attacker can exploit this to bypass authentication and execute arbitrary commands on the target system.

Impact

Code Execution
Bypass Security
Unauthorized Access

Affected Vendors

Apache

Affected Products

Apache OFbiz prior to 17.12.06

Remediation

Update your Security Gateway product to the latest IPS update.

https://www.checkpoint.com/defense/advisories/public/2021/cpai-2021-0245.html#protection

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

iOS Activation Bug Allows Unauthenticated XML Injection

Critical Threat: Gunra Ransomware Targets Critical Sectors Worldwide – Active IOCs

Lyrix Ransomware – Active IOCs

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Rewterz Threat Alert – Raccoon Infostealer – Active IOCs

Rewterz Threat Alert – Remcos RAT – Active IOCs

The Wait Is Over!

The Rewterz Annual Threat Intelligence Report 2024 is finally here.