Rewterz Threat Alert – APT Group Gamaredon aka Shuckworm – Active IOCs

November 5, 2023

Rewterz Threat Advisory – Multiple Node.js Products Vulnerabilities

November 5, 2023

Rewterz Threat Advisory – CVE-2023-46158 – IBM WebSphere Application Server Liberty Vulnerability

November 5, 2023

Severity

Medium

Analysis Summary

CVE-2023-46158

IBM WebSphere Application Server Liberty 23.0.0.9 through 23.0.0.10 could provide weaker than expected security due to improper resource expiration handling.

Impact

Privileges Escalation

Indicators Of Compromise

CVE

CVE-2023-46158

Affected Vendors

IBM

Affected Products

IBM WebSphere Hybrid Edition 5.1
IBM Cloud Pak for Applications 5.1
IBM WebSphere Application Server Liberty 23.0.0.9
IBM WebSphere Application Server Liberty 23.0.0.10

Remediation

Refer to IBM Security Advisory for patch, upgrade or suggested workaround information.

IBM Security Advisory

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

ClickFix Scheme Used by Russian Hackers to Deploy Espionage Malware – Active IOCs

Cyber Threat Alert: Immediate Action Required on Existing APT Threat Indicators – Active IOCs

Tinba aka TinyBanker Trojan – Active IOCs

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Rewterz Threat Alert – APT Group Gamaredon aka Shuckworm – Active IOCs

Rewterz Threat Advisory – Multiple Node.js Products Vulnerabilities

The Wait Is Over!

The Rewterz Annual Threat Intelligence Report 2024 is finally here.