Rewterz Threat Alert – An Emerging Ducktail Infostealer – Active IOCs
September 28, 2023Rewterz Threat Advisory – Mulitple Apple iOS and iPadOS Vulnerabilities
September 28, 2023Rewterz Threat Alert – An Emerging Ducktail Infostealer – Active IOCs
September 28, 2023Rewterz Threat Advisory – Mulitple Apple iOS and iPadOS Vulnerabilities
September 28, 2023Severity
Medium
Analysis Summary
CVE-2023-42503
Apache Commons Compress is vulnerable to a denial of service, caused by improper input validation. By persuading a victim to open a specially crafted TAR file, a remote attacker could exploit this vulnerability to cause a denial of service condition.
Impact
- Privilege Escalation
- Security Bypass
Indicators Of Compromise
CVE
- CVE-2023-41068
- CVE-2023-41071
- CVE-2023-41174
- CVE-2023-40520
- CVE-2023-40456
- CVE-2023-40419
- CVE-2023-40418
Affected Vendors
Apple
Affected Products
- Apple watchOS 10.0.0
Remediation
Refer to Apple security document for patch, upgrade or suggested workaround information.