Rewterz

Rewterz Threat Alert – MuddyWater APT – Active IOCs

March 15, 2022
Rewterz

Rewterz Threat Advisory – CVE-2022-26779 – Apache CloudStack Vulnerability

March 16, 2022

Rewterz Threat Advisory – Multiple Dell BIOS Vulnerabilities

Severity

High

Analysis Summary

CVE-2022-24420; CVE-2022-24419; CVE-2022-24416; CVE-2022-24415

Dell BIOS could allow a local authenticated attacker to execute arbitrary code on the system, caused by improper input validation. By using an SMI, an attacker could exploit this vulnerability to execute arbitrary code on the system during SMM.

Impact

  • Code Execution

Indicators Of Compromise

CVE

  • CVE-2022-24420

Affected Vendors

Dell

Affected Products

  • Dell Alienware 13 R3
  • Dell Alienware 15 R3
  • Dell Alienware 15 R4
  • Dell Alienware 17 R4

Remediation

Refer to Dell DSA Identifier for the patch, upgrade, or suggested workaround information.

Dell DSA Identifier:

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.