Rewterz Threat Alert – SmokeLoader Malware – Active IOCs

February 12, 2023

Rewterz Threat Alert – RedLine Stealer – Active IOCs

February 13, 2023

Rewterz Threat Advisory – CVE-2023-22832 – Apache NiFi Vulnerability

February 13, 2023

Severity

High

Analysis Summary

CVE-2023-22832

Apache NiFi could allow a remote attacker to obtain sensitive information, caused by improper handling of XML external entity (XXE) declarations by the ExtractCCDAAttributes Processor. By using a specially-crafted XML content, a remote attacker could exploit this vulnerability to read arbitrary files on the server.

Impact

Information Disclosure

Indicators Of Compromise

CVE

CVE-2023-22832

Affected Vendors

Apache

Affected Products

Apache NiFi 1.19.1
Apache NiFi 1.2.0

Remediation

Upgrade to the latest version of Apache NiFi, available from the Apache Website.

Apache Website

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

SideWinder APT Group aka Rattlesnake – Active IOCs

Google OAuth Exploited in Sophisticated Phishing Campaign

Hackers Actively Exploit Critical Vulnerabilities in Exchange and SharePoint Servers

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Rewterz Threat Alert – SmokeLoader Malware – Active IOCs

Rewterz Threat Alert – RedLine Stealer – Active IOCs

The Wait Is Over!

The Rewterz Annual Threat Intelligence Report 2024 is finally here.