Rewterz Threat Alert – Phobos Ransomware – Active IOCs

June 21, 2022

Rewterz Threat Alert – Remcos RAT – Active IOCs

June 21, 2022

Rewterz Threat Advisory – CVE-2021-33295 – Node.js joplin module Vulnerability

June 21, 2022

Severity

Medium

Analysis Summary

CVE-2021-33295

Node.js joplin module is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the NOSCRIPT tags in htmlUtils.ts. A remote attacker could exploit this vulnerability using a specially-crafted URL to execute script in a victim’s Web browser within the security context of the hosting Web site, once the URL is clicked. An attacker could use this vulnerability to steal the victim’s cookie-based authentication credentials

Impact

Cross-Site Scripting

Indicators Of Compromise

CVE

CVE-2021-33295

Affected Vendors

Node.js

Affected Products

Node.js joplin 1.8.1

Remediation

Upgrade to the latest version of joplin, available from the NPM Web site.
NPM Web site

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

Sophisticated BPFDoor Malware Detected Targeting Linux Systems – Active IOCs

Microsoft Alerts on Node.js Exploitation in Malware Campaigns

ICS: Multiple Rockwell Automation ThinManager Vulnerabilities

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Rewterz Threat Alert – Phobos Ransomware – Active IOCs

Rewterz Threat Alert – Remcos RAT – Active IOCs

The Wait Is Over!

The Rewterz Annual Threat Intelligence Report 2024 is finally here.