Rewterz Threat Advisory – Multiple Apache IoTDB Vulnerabilities

September 6, 2022

Rewterz Threat Alert – APT29 Cozy Bear aka Nobelium– Active IOCs

September 6, 2022

Rewterz Threat Advisory – CVE-2022-2250 – GitLab Vulnerability

September 6, 2022

Severity

Medium

Analysis Summary

CVE-2022-2250

GitLab could allow a remote attacker to conduct phishing attacks, caused by an open redirect vulnerability. An attacker could exploit this vulnerability using a specially-crafted URL to redirect a victim to arbitrary Web sites.

Impact

Unauthorized Access

Indicators Of Compromise

CVE

CVE-2022-2250

Affected Vendors

GitLab

Affected Products

GitLab GitLab 15.1.0
GitLab GitLab 15.0.3
GitLab GitLab 14.10.4

Remediation

Refer to GitLab Web site for patch, upgrade or suggested workaround information.

GitLab Website

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

GitHub Tools Deployed in CrazyHunter Ransomware Campaigns – Active IOCs

North Korean APT Kimsuky aka Black Banshee – Active IOCs

Sophisticated BPFDoor Malware Detected Targeting Linux Systems – Active IOCs

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Rewterz Threat Advisory – Multiple Apache IoTDB Vulnerabilities

Rewterz Threat Alert – APT29 Cozy Bear aka Nobelium– Active IOCs

The Wait Is Over!

The Rewterz Annual Threat Intelligence Report 2024 is finally here.