Rewterz Threat Alert – WannaCry Ransomware – Active IOCs

August 11, 2022

Rewterz Threat Update – Cisco Suffered A Data Breach Attack By The Yanluowang Ransomware Gang

August 11, 2022

Rewterz Threat Advisory – CVE-2022-37393 – Zimbra Vulnerability

August 11, 2022

Severity

High

Analysis Summary

CVE-2022-37393

Zimbra could allow a local authenticated attacker to gain elevated privileges on the system, caused by a flaw in the sudo configuration. By sending a specially-crafted request, an <authenticated> attacker could exploit this vulnerability to execute the zmslapd binary as root user.

Impact

Privilege Escalation

Indicators Of Compromise

CVE

CVE-2022-37393

Affected Vendors

Zimbra

Affected Products

Zimbra 8.8.15

Remediation

Refer to Zimbra Security Advisory for patch, upgrade or suggested workaround information.
Zimbra Security Advisory

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

SideWinder APT Group aka Rattlesnake Targeting Pakistan – Active IOCs

F5 BIG-IP Exploit Allows Attackers to Escape Admin Restrictions

Multiple F5 BIG-IP Products Vulnerabilities

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Rewterz Threat Alert – WannaCry Ransomware – Active IOCs

Rewterz Threat Update – Cisco Suffered A Data Breach Attack By The Yanluowang Ransomware Gang

The Wait Is Over!

The Rewterz Annual Threat Intelligence Report 2024 is finally here.