Rewterz

Rewterz Threat Alert – Lazarus APT Group – Active IOCs

June 28, 2021
Rewterz

Rewterz Threat Advisory – CVE-2021-1073 – NVIDIA GeForce Experience Vulnerability

June 28, 2021

Rewterz Threat Advisory – CVE-2021-27274 – Netgear ProSAFE Network Management System Arbitrary File Upload

Severity

High

Analysis Summary

CVE-2021-27274

This vulnerability allows remote attackers to execute arbitrary code on affected installations of NETGEAR ProSAFE Network Management System 1.6.0.26. Authentication is not required to exploit this vulnerability. The specific flaw exists within the MFileUploadController class. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to execute code in the context of SYSTEM.

Impact

  • Code Execution
  • Privilege Escalation
  • Unauthorized Access

Affected Vendors

NETGEAR

Affected Products

  • ProSAFE NMS300

Remediation

Update your Security Gateway product to the latest IPS update.
https://www.checkpoint.com/defense/advisories/public/2006/sbp-31-Jul.html

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.