Rewterz Threat Advisory – CVE-2023-36539 – Zoom Client Vulnerability

Rewterz Threat Alert – An Emerging Ducktail Infostealer – Active IOCs

July 3, 2023

Rewterz Threat Alert – Malvertising Campaign: BlackCat Ransomware Operators Spreads Ransomware Disguised As WinSCP – Active IOCs

July 3, 2023

Rewterz Threat Advisory – CVE-2023-36539 – Zoom Client Vulnerability

Severity

Medium

Analysis Summary

CVE-2023-36539

Zoom client could allow a remote authenticated attacker to obtain sensitive information, caused by cryptographic issues in in-meeting chat messages. An attacker could exploit this vulnerability to obtain sensitive information.

Impact

Information Disclosure

Indicators Of Compromise

CVE

CVE-2023-36539

Affected Vendors

Zoom

Affected Products

Zoom Client for Meetings

Remediation

Refer to Zoom Security Bulletin for patch, upgrade or suggested workaround information.

Zoom Security Bulletin

Rewterz Threat Alert – An Emerging Ducktail Infostealer – Active IOCs

Rewterz Threat Alert – Malvertising Campaign: BlackCat Ransomware Operators Spreads Ransomware Disguised As WinSCP – Active IOCs

Rewterz Threat Advisory – CVE-2023-36539 – Zoom Client Vulnerability

Severity

Analysis Summary

Impact

Indicators Of Compromise

CVE

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan