Rewterz Threat Advisory – CVE-2022-2250 – GitLab Vulnerability

Rewterz Threat Advisory – Multiple Apache IoTDB Vulnerabilities

September 6, 2022

Rewterz Threat Alert – APT29 Cozy Bear aka Nobelium– Active IOCs

September 6, 2022

Rewterz Threat Advisory – CVE-2022-2250 – GitLab Vulnerability

Severity

Medium

Analysis Summary

CVE-2022-2250

GitLab could allow a remote attacker to conduct phishing attacks, caused by an open redirect vulnerability. An attacker could exploit this vulnerability using a specially-crafted URL to redirect a victim to arbitrary Web sites.

Impact

Unauthorized Access

Indicators Of Compromise

CVE

CVE-2022-2250

Affected Vendors

GitLab

Affected Products

GitLab GitLab 15.1.0
GitLab GitLab 15.0.3
GitLab GitLab 14.10.4

Remediation

Refer to GitLab Web site for patch, upgrade or suggested workaround information.

GitLab Website

Rewterz Threat Advisory – Multiple Apache IoTDB Vulnerabilities

Rewterz Threat Alert – APT29 Cozy Bear aka Nobelium– Active IOCs

Rewterz Threat Advisory – CVE-2022-2250 – GitLab Vulnerability

Severity

Analysis Summary

Impact

Indicators Of Compromise

CVE

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan