Smishing Triad Aims to Large-Scale Defraud Banking Customers in Pakistan – Active IOCs

June 14, 2024

Multiple IBM Db2 Vulnerabilities

June 14, 2024

Multiple Adobe Experience Manager Vulnerabilities

June 14, 2024

Severity

High

Analysis Summary

CVE-2024-26029 CVSS:7.5

Adobe Experience Manager could allow a remote attacker to bypass security restrictions, caused by improper access control. By persuading a victim to open a specially crafted document, a remote attacker could exploit this vulnerability to bypass access restrictions.

CVE-2024-36226 CVSS:7.5

Adobe Experience Manager could allow a remote attacker to bypass security restrictions, caused by improper input validation. By persuading a victim to open a specially crafted document, a remote attacker could exploit this vulnerability to bypass access restrictions.

Impact

Security Bypass

Indicators of Compromise

CVE

CVE-2024-26029
CVE-2024-36226

Affected Vendors

Adobe

Affected Products

Adobe Experience Manager 6.5.20

Remediation

Refer to Adobe Security Advisory for patch, upgrade or suggested workaround information.

Adobe Security Advisory

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

Microsoft Entra Account Lockouts Triggered by Token Logging Error

SideWinder APT Group aka Rattlesnake Targeting Pakistan – Active IOCs

SideWinder APT Group aka Rattlesnake – Active IOCs

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Smishing Triad Aims to Large-Scale Defraud Banking Customers in Pakistan – Active IOCs

Multiple IBM Db2 Vulnerabilities

Severity

High

Analysis Summary

Indicators of Compromise

CVE

Affected Vendors

Affected Products

Remediation

The Wait Is Over!

The Rewterz Annual Threat Intelligence Report 2024 is finally here.