β Accenture Confirms LockBit Ransomware Attack β
π Read
via "Threat Post".
LockBit offered Accenture's purported databases and made a requisite jab at its purportedly sad security. Accenture says it recovered just fine from backups.π Read
via "Threat Post".
Threat Post
Accenture Confirms LockBit Ransomware Attack
081321 08:42 UPDATE: Accenture sent an internal memo confirming that attackers stole client information & work materials in a July 30 "incident."
βΌ CVE-2020-21363 βΌ
π Read
via "National Vulnerability Database".
An arbitrary file deletion vulnerability exists within Maccms10.π Read
via "National Vulnerability Database".
βΌ CVE-2020-25560 βΌ
π Read
via "National Vulnerability Database".
In SapphireIMS 5.0, it is possible to use the hardcoded credential in clients (username: sapphire, password: ims) and gain access to the portal. Once the access is available, the attacker can inject malicious OS commands on Γ’β¬ΕpingΓ’β¬οΏ½, Γ’β¬ΕtracerouteΓ’β¬οΏ½ and Γ’β¬ΕsnmpΓ’β¬οΏ½ functions and execute code on the server. We also observed the same is true if the JSESSIONID is completely removed.π Read
via "National Vulnerability Database".
βΌ CVE-2021-33793 βΌ
π Read
via "National Vulnerability Database".
Foxit Reader before 10.1.4 and PhantomPDF before 10.1.4 have an out-of-bounds write because the Cross-Reference table is mishandled during Office document conversion.π Read
via "National Vulnerability Database".
βΌ CVE-2021-33791 βΌ
π Read
via "National Vulnerability Database".
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability.π Read
via "National Vulnerability Database".
βΌ CVE-2021-22098 βΌ
π Read
via "National Vulnerability Database".
UAA server versions prior to 75.4.0 are vulnerable to an open redirect vulnerability. A malicious user can exploit the open redirect vulnerability by social engineering leading to take over of victimsΓ’β¬β’ accounts in certain cases along with redirection of UAA users to a malicious sites.π Read
via "National Vulnerability Database".
βΌ CVE-2020-25565 βΌ
π Read
via "National Vulnerability Database".
In SapphireIMS 5.0, it is possible to use the hardcoded credential in clients (username: sapphire, password: ims) and gain access to the portal. Once the access is available, the attacker can inject malicious OS commands on Γ’β¬ΕpingΓ’β¬οΏ½, Γ’β¬ΕtracerouteΓ’β¬οΏ½ and Γ’β¬ΕsnmpΓ’β¬οΏ½ functions and execute code on the server.π Read
via "National Vulnerability Database".
βΌ CVE-2017-16630 βΌ
π Read
via "National Vulnerability Database".
In SapphireIMS 4097_1, a guest user can create a local administrator account on any system that has SapphireIMS installed, because of an Insecure Direct Object Reference (IDOR) in the local user creation function.π Read
via "National Vulnerability Database".
βΌ CVE-2021-32438 βΌ
π Read
via "National Vulnerability Database".
The gf_media_export_filters function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.π Read
via "National Vulnerability Database".
βΌ CVE-2020-25562 βΌ
π Read
via "National Vulnerability Database".
In SapphireIMS 5.0, there is no CSRF token present in the entire application. This can lead to CSRF vulnerabilities in critical application forms like account resent.π Read
via "National Vulnerability Database".
βΌ CVE-2021-32437 βΌ
π Read
via "National Vulnerability Database".
The gf_hinter_finalize function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.π Read
via "National Vulnerability Database".
βΌ CVE-2020-25564 βΌ
π Read
via "National Vulnerability Database".
In SapphireIMS 5.0, it is possible to create local administrator on any client with credentials of a non-privileged user by directly accessing RemoteMgmtTaskSave (Automation Tasks) feature.π Read
via "National Vulnerability Database".
βΌ CVE-2021-32439 βΌ
π Read
via "National Vulnerability Database".
Buffer overflow in the stbl_AppendSize function in MP4Box in GPAC 1.0.1 allows attackers to cause a denial of service or execute arbitrary code via a crafted file.π Read
via "National Vulnerability Database".
βΌ CVE-2020-25561 βΌ
π Read
via "National Vulnerability Database".
SapphireIMS 5 utilized default sapphire:ims credentials to connect the client to server. This credential is saved in ServerConf.config file in the client.π Read
via "National Vulnerability Database".
βΌ CVE-2020-21362 βΌ
π Read
via "National Vulnerability Database".
A cross site scripting (XSS) vulnerability in the background search function of Maccms10 allows attackers to execute arbitrary web scripts or HTML via the 'wd' parameter.π Read
via "National Vulnerability Database".
βΌ CVE-2020-25563 βΌ
π Read
via "National Vulnerability Database".
In SapphireIMS 5.0, it is possible to create local administrator on any client without requiring any credentials by directly accessing RemoteMgmtTaskSave (Automation Tasks) feature and not having a JSESSIONID.π Read
via "National Vulnerability Database".
βΌ CVE-2017-16629 βΌ
π Read
via "National Vulnerability Database".
In SapphireIMS 4097_1, it is possible to guess the registered/active usernames of the software from the errors it gives out for each type of user on the Login form. For "Incorrect User" - it gives an error "The application failed to identify the user. Please contact administrator for help." For "Correct User and Incorrect Password" - it gives an error "Authentication failed. Please login again."π Read
via "National Vulnerability Database".
βΌ CVE-2021-33794 βΌ
π Read
via "National Vulnerability Database".
Foxit Reader before 10.1.4 and PhantomPDF before 10.1.4 allow information disclosure or an application crash after mishandling the Tab key during XFA form interaction.π Read
via "National Vulnerability Database".
βΌ CVE-2021-32440 βΌ
π Read
via "National Vulnerability Database".
The Media_RewriteODFrame function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.π Read
via "National Vulnerability Database".
βΌ CVE-2020-21359 βΌ
π Read
via "National Vulnerability Database".
An arbitrary file upload vulnerability in the Template Upload function of Maccms10 allows attackers bypass the suffix whitelist verification to execute arbitrary code via adding a character to the end of the uploaded file's name.π Read
via "National Vulnerability Database".
βΌ CVE-2017-16632 βΌ
π Read
via "National Vulnerability Database".
In SapphireIMS 4097_1, the password in the database is stored in Base64 format.π Read
via "National Vulnerability Database".