Rewterz Threat Alert – STOP/DJVU Ransomware – Active IOCs
July 7, 2022Rewterz Threat Advisory – CVE-2022-20768 – Cisco TelePresence Collaboration Endpoint and RoomOS Software Vulnerability
July 7, 2022Rewterz Threat Alert – STOP/DJVU Ransomware – Active IOCs
July 7, 2022Rewterz Threat Advisory – CVE-2022-20768 – Cisco TelePresence Collaboration Endpoint and RoomOS Software Vulnerability
July 7, 2022Severity
Medium
Analysis Summary
CVE-2022-20791 CVSS:6.5
Cisco Unified Communications Products could allow a remote authenticated attacker to obtain sensitive information, caused by improper file permission restrictions. By sending a specially-crafted command from the API to the application, an attacker could exploit this vulnerability to read arbitrary files on the underlying operating system, and use this information to launch further attacks against the affected system.
CVE-2022-20862 CVSS:4.3
Cisco Unified Communications Manager and Unified Communications Manager Session Management Edition could allow a remote authenticated attacker to traverse directories on the system, caused by improper validation of user-supplied input. An attacker could send a specially-crafted URL request containing “dot dot” sequences (/../) to view arbitrary files on the system.
Impact
- Information Theft
Indicators Of Compromise
CVE
- CVE-2022-20791
- CVE-2022-20862
Affected Vendors
Apache
Affected Products
Apache Superset 1.5.0
Remediation
Upgrade to the latest version of Apache Superset, available from the Apache Web site.