Rewterz Threat Alert – Enigma Stealer Targeting The Cryptocurrency Industry Using Fake Crypto Job Offers – Active IOCs
February 14, 2023Rewterz Threat Advisory – CVE-2023-23529 – Apple Safari WebKit Vulnerability
February 14, 2023Rewterz Threat Alert – Enigma Stealer Targeting The Cryptocurrency Industry Using Fake Crypto Job Offers – Active IOCs
February 14, 2023Rewterz Threat Advisory – CVE-2023-23529 – Apple Safari WebKit Vulnerability
February 14, 2023Severity
Medium
Analysis Summary
CVE-2022-25937
Node.js glance could allow a remote attacker to traverse directories on the system . An attacker could send a specially-crafted URL request to view arbitrary files on the system.
Impact
- Information Theft
Indicators Of Compromise
CVE
- CVE-2022-25937
Affected Vendors
Node.js
Affected Products
- Node.js glance 3.0.8
Remediation
Refer to glance GIT Rpository for patch, upgrade or suggested workaround information.