Rewterz Threat Advisory – Multiple Linux Mint Xreader Vulnerabilities

Rewterz Threat Advisory – CVE-2023-29380 – Linux Mint Warpinator Vulnerability

December 28, 2023

Rewterz Threat Alert – Editbot Stealer: A Python-Powered Threat Aiming at Social Media Users – Active IOCs

December 28, 2023

Rewterz Threat Advisory – Multiple Linux Mint Xreader Vulnerabilities

Severity

High

Analysis Summary

CVE-2023-44451 CVSS:7.8

Linux Mint Xreader could allow a remote attacker to execute arbitrary code on the system, caused by a flaw in the parsing of EPUB files. By persuading a victim to open a specially crafted EPUB file, an attacker could exploit this vulnerability to execute arbitrary code in the context of the current user.

CVE-2023-44452 CVSS:7.8

Linux Mint Xreader could allow a remote attacker to execute arbitrary code on the system, caused by a flaw in the parsing of CBT files. By persuading a victim to open a specially crafted CBT file, an attacker could exploit this vulnerability to execute arbitrary code in the context of the current user.

Impact

Code Execution

Indicators Of Compromise

CVE

CVE-2023-44451
CVE-2023-44452

Affected Vendors

Linux

Affected Products

Linux Mint Xreader 3.8.4

Remediation

Refer to Xreader GIT Repository for patch, upgrade or suggested workaround information.

Xreader GIT Repository

Rewterz Threat Advisory – CVE-2023-29380 – Linux Mint Warpinator Vulnerability

Rewterz Threat Alert – Editbot Stealer: A Python-Powered Threat Aiming at Social Media Users – Active IOCs

Rewterz Threat Advisory – Multiple Linux Mint Xreader Vulnerabilities

Severity

Analysis Summary

Impact

Indicators Of Compromise

CVE

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan