Rewterz Threat Advisory – CVE-2022-1254 – McAfee Skyhigh SWG Vulnerability

Rewterz Threat Advisory – CVE-2022-24858 – Node.js next-auth module Vulnerability

April 21, 2022

Rewterz Threat Update – Industrial Spy – A new Leaked Data Marketplace – Active IOCs

April 21, 2022

Rewterz Threat Advisory – CVE-2022-1254 – McAfee Skyhigh SWG Vulnerability

Severity

Medium

Analysis Summary

CVE-2022-1254

McAfee Skyhigh SWG could allow a remote attacker to conduct phishing attacks, caused by an open redirect vulnerability. By using a specially-crafted SVG file to create HTTP redirect responses, an attacker could exploit this vulnerability using a specially-crafted URL to redirect a victim to arbitrary Web sites.

Impact

Remote Code Execution

Indicators Of Compromise

CVE

CVE-2022-1254

Affected Vendors

McAfee

Affected Products

McAfee Skyhigh SWG 10.2.8
McAfee Skyhigh SWG 9.2.19
McAfee Skyhigh SWG 8.2.26
McAfee Skyhigh SWG 7.8.2.30

Remediation

Refer to McAfee Security Bulletin for patch, upgrade or suggested workaround information.

McAfee Security Bulletin

Rewterz Threat Advisory – CVE-2022-24858 – Node.js next-auth module Vulnerability

Rewterz Threat Update – Industrial Spy – A new Leaked Data Marketplace – Active IOCs

Rewterz Threat Advisory – CVE-2022-1254 – McAfee Skyhigh SWG Vulnerability

Severity

Analysis Summary

CVE-2022-1254

Impact

Indicators Of Compromise

CVE

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan