Rewterz Threat Alert – DarkCrystal RAT (DCRat) – Active IOCs
November 16, 2022Rewterz Threat Advisory – Multiple Apache Airflow Vulnerabilities 
November 16, 2022Rewterz Threat Alert – DarkCrystal RAT (DCRat) – Active IOCs
November 16, 2022Rewterz Threat Advisory – Multiple Apache Airflow Vulnerabilities 
November 16, 2022Severity
High
Analysis Summary
CVE-2022-45136
Apache Jena SDB could allow a remote authenticated attacker to execute arbitrary code on the system, caused by an unsafe deserialization flaw in the JDBC URL. By sending specially-crafted input, an attacker could exploit this vulnerability to execute arbitrary code on the system.
Impact
Code Execution
Indicators Of Compromise
CVE
- CVE-2022-45136
Affected Vendors
Apache
Affected Products
- Apache Jena SDB 3.17.0
Remediation
Refer to Apache Web site for patch, upgrade or suggested workaround information.