Rewterz Threat Alert – Raccoon Infostealer – Active IOCs
June 22, 2021Rewterz Threat Alert – Remcos RAT – Active IOCs
June 22, 2021Rewterz Threat Alert – Raccoon Infostealer – Active IOCs
June 22, 2021Rewterz Threat Alert – Remcos RAT – Active IOCs
June 22, 2021Severity
High
Analysis Summary
CVE-2021-26295
A remote code execution vulnerability exists in Apache OFBiz prior to 17.12.06 due to the Deserialization of Untrusted Data. An unauthenticated, remote attacker can exploit this to bypass authentication and execute arbitrary commands on the target system.
Impact
- Code Execution
- Bypass Security
- Unauthorized Access
Affected Vendors
Apache
Affected Products
- Apache OFbiz prior to 17.12.06
Remediation
Update your Security Gateway product to the latest IPS update.
https://www.checkpoint.com/defense/advisories/public/2021/cpai-2021-0245.html#protection