Rewterz Threat Advisory – CVE-2022-22412 – IBM Robotic Process Automation Vulnerability
July 27, 2022Rewterz Threat Alert – Agent Tesla Malware – Active IOCs
July 27, 2022Rewterz Threat Advisory – CVE-2022-22412 – IBM Robotic Process Automation Vulnerability
July 27, 2022Rewterz Threat Alert – Agent Tesla Malware – Active IOCs
July 27, 2022Severity
High
Analysis Summary
CVE-2022-24294
Apache MXNet is vulnerable to a denial of service, caused by a regular expression denial of service (ReDoS) flaw in the RTC Module. By sending a specially-crafted regex input using the operator name, a remote attacker could exploit this vulnerability to cause a denial of service condition.
Impact
- Denial of Service
Indicators Of Compromise
CVE
- CVE-2022-24294
Affected Vendors
Apache
Affected Products
Apache MXNet 1.9.0
Remediation
Upgrade to the latest version of Apache MXNet, available from the Apache Web site.