Rewterz Threat Advisory – CVE-2022-35278 – Apache ActiveMQ Artemis Vulnerability

August 19, 2022

Rewterz Threat Alert – DoNot APT Team Added New Tricks And Techniques To Its Kit – Active IOCs

August 19, 2022

Rewterz Threat Advisory – CVE-2022-28757 – Zoom Client for Meetings for macOS Vulnerability

August 19, 2022

Severity

High

Analysis Summary

CVE-2022-28757

Zoom Client for Meetings for macOS could allow a local authenticated attacker to gain elevated privileges on the system, caused by a flaw in the auto update process. By sending a specially-crafted request, an authenticated attacker could exploit this vulnerability to gain elevated privileges as root.

Impact

Privilege Escalation

Indicators Of Compromise

CVE

CVE-2022-28757

Affected Vendors

Zoom

Affected Products

Zoom Client for Meetings for macOS 5.7.3
Zoom Client for Meetings for macOS 5.11.5

Remediation

Refer to Zoom Security Advisory for patch, upgrade or suggested workaround information.

Zoom Security Advisory

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

GitHub Tools Deployed in CrazyHunter Ransomware Campaigns – Active IOCs

North Korean APT Kimsuky aka Black Banshee – Active IOCs

Sophisticated BPFDoor Malware Detected Targeting Linux Systems – Active IOCs

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Rewterz Threat Advisory – CVE-2022-35278 – Apache ActiveMQ Artemis Vulnerability

Rewterz Threat Alert – DoNot APT Team Added New Tricks And Techniques To Its Kit – Active IOCs

The Wait Is Over!

The Rewterz Annual Threat Intelligence Report 2024 is finally here.