CISA Adds Critical Flaw in BeyondTrust Software to Exploited Vulnerabilities List

/* * This file is part of the Symfony package. * * (c) Fabien Potencier * * For the full copyright and license information, please view the LICENSE * file that was distributed with this source code. */ namespace Symfony\Component\String; if (!\function_exists(u::class)) { function u(?string $string = ''): UnicodeString { return new UnicodeString($string ?? ''); } } if (!\function_exists(b::class)) { function b(?string $string = ''): ByteString { return new ByteString($string ?? ''); } } if (!\function_exists(s::class)) { /** * @return UnicodeString|ByteString */ function s(?string $string = ''): AbstractString { $string = $string ?? ''; return preg_match('//u', $string) ? new UnicodeString($string) : new ByteString($string); } } CISA Adds Critical Flaw in BeyondTrust Software to Exploited Vulnerabilities List – OWASP Jakarta

CISA Adds Critical Flaw in BeyondTrust Software to Exploited Vulnerabilities List

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a critical security flaw impacting BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) products to the Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation in the wild.
The vulnerability, tracked as CVE-2024-12356 (CVSS score: 9.8), is a command injection flaw that

[ad_2]

2024-12-20 04:30:00

Categories: News

Tags: AddsBeyondTrustCISACriticalexploitedFlawListSoftwareVulnerabilities

0 Comments

Leave a Reply Cancel reply

Webinar: Learn How to Stop Encrypted Attacks Before They Cost You Millions

MirrorFace Leverages ANEL and NOOPDOOR in Multi-Year Cyberattacks on Japan

Critical RCE Flaw in GFI KerioControl Allows Remote Code Execution via CRLF Injection