Rewterz Threat Alert – “Stealc” – An Information Stealer Malware – Active IOCs
September 6, 2023Rewterz Threat Advisory – ICS: Delta Electronics CNCSoft-B DOPSoft Vulnerability
September 11, 2023Rewterz Threat Alert – “Stealc” – An Information Stealer Malware – Active IOCs
September 6, 2023Rewterz Threat Advisory – ICS: Delta Electronics CNCSoft-B DOPSoft Vulnerability
September 11, 2023Severity
High
Analysis Summary
CVE-2022-33164
IBM Security Directory Server 7.2.0 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing “dot dot” sequences (/../) to view or write to arbitrary files on the system.
Impact
- Information Theft
Indicators Of Compromise
CVE
- CVE-2022-33164
Affected Vendors
IBM
Affected Products
- IBM Security Directory Integrator 7.2.0
Remediation
Refer to IBM Security Advisory for patch, upgrade or suggested workaround information.