CVE-2024-22024: XXE in Ivanti Connect Secure, 8.8 rating❗️

The vulnerability allows an unauthenticated attacker to gain access to certain internal resources. According to Ivanti, the problem was found during an internal audit and has not yet been exploited.

Search at Netlas.io:
👉🏻 Link: https://nt.ls/0AKq9
👉🏻 Dork: http.body:"welcome.cgi?p=logo"

Vendor's advisory: https://forums.ivanti.com/s/article/CVE-2024-22024-XXE-for-Ivanti-Connect-Secure-and-Ivanti-Policy-Secure?language=en_US

Indicator Lifecycle completing with Netlas.io 🔥

We present to you an article from Adam Goss, in which the author reviewed a good use case for Netlas. In it you will learn how to use the ASD Tool in Threat Hunting 🔍

👉🏻 Read here: https://adamgoss.medium.com/netlas-io-a-powerful-suite-of-tools-for-threat-hunting-5aae7b6291a8

Enjoy reading!

CVE-2023-43770: Old XSS in Roundcube, that is being exploited now❗

A patch for this CVE appeared back in September, however, according to CISA, it is now actively used in attacks, allowing hackers to gain access to restricted information.

Search at Netlas.io:
👉 Link: https://nt.ls/LAQwc
👉 Dork: http.favicon.hash_sha256:20c30fd4340308d6a4ab222acae353fc2460793ac76645bb1ef1d9d61f4f0a9e

Read more: https://www.bleepingcomputer.com/news/security/cisa-roundcube-email-server-bug-now-exploited-in-attacks/

CVE-2024-21410: 0day in MS Exchange, 9.8 rating 🔥

The vulnerability allows unauthenticated attackers to perform privilege escalation in NTLM relay attacks.

Search at Netlas.io:
👉🏻 Link: https://nt.ls/pR4S2
👉🏻 Dork: tag.name:"microsoft_exchange"

Vendor's advisory: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21410

How to find out what hardware is used in a certain plant❓ How to assess the level of security of a certain area's critical infrastructure❓

About this in our new article dedicated to industrial software and devices 🔥

👉🏻 Read here: https://netlas.medium.com/searching-industrial-infrastructure-with-netlas-io-49c08ca519a2

Enjoy reading!

CVE-2024-1708, -1709: Auth Bypass in ConnectWise ScreenConnect, 10.0 rating 🔥🔥🔥

The vulnerability allows an attacker to perform RCE or edit sensitive data. PoC is now available!

Search at Netlas.io:
👉🏻 Link: https://nt.ls/Vbu6L
👉🏻 Dork: http.headers.server:"ScreenConnect"

Vendor's advisory: https://www.connectwise.com/company/trust/security-bulletins/connectwise-screenconnect-23.9.8

CVE-2024-21722, 723, 724, 25, 26: Multiple vulns in Joomla❗️

Five vulnerabilities have been discovered in the Joomla content management system that could be leveraged to execute arbitrary code on vulnerable websites.

Search at Netlas.io:
👉🏻 Link: https://nt.ls/dNRpZ
👉🏻 Dork: tag.name:"joomla"

Read more: https://www.bleepingcomputer.com/news/security/joomla-fixes-xss-flaws-that-could-expose-sites-to-rce-attacks/

Data of more than 85 million United Healthcare customers leaked by hackers 🚨

Many pharmaceutical companies in the United States were attacked using the recent vulnerability (CVE-2024-1709) in ScreenConnect, and United Healthcare itself is still restoring its infrastructure 💊

Some servers are still vulnerable: https://nt.ls/Vbu6L

We regret to inform you that due to unforeseen network issues, Netlas.io is currently unavailable. Our team is actively working to resolve the issue and restore service as soon as possible. We apologize for any inconvenience caused and appreciate your patience and understanding. Stay tuned for updates. Thank you. 🙏

🚀 We're back online! Everything's running smoothly. Our team's investigating to prevent future incidents like this. Thanks for your patience! 🙌

Interface update 💻

To separate the site menu and the application menu, a small visual update was released. In case you lost the ASD Tool after this, we inform you that it is now located on the top panel of the interface. You can see how to find it in the picture.

Good luck with your projects and thank you for using Netlas!

How to find live cameras with Netlas - short cheatsheet 📑

A summary of one of our most popular articles in one picture. Traveling around the world through thousands of cameras - what could be more interesting? 🌏

👉 Read more here: https://medium.com/osint-ambition/how-to-find-online-cameras-with-netlas-io-c68cdf5f327f

Fact: old SSL/TLS certificate threatens both the reputation of the website and the security of the data the user is working with❗

How to check the certificate for yourself or a contractor?

👉 Just use Netlas: https://app.netlas.io/certs/

CVE-2024-27198, -27199: Auth Bypass in JetBrains TeamCity, 9.8 rating 🔥

The vulnerabilities may enable an attacker to bypass authentication checks and gain administrative permissions on the TeamCity server. Affected all versions through 2023.11.3!

Search at Netlas.io:
👉 Link: https://nt.ls/7DYva
👉 Dork: http.headers.set_cookie:TCSESSIONID NOT http.body:"2023.11.3" NOT http.body:"2023.11.4"

Vendor's advisory: https://blog.jetbrains.com/teamcity/2024/03/additional-critical-security-issues-affecting-teamcity-on-premises-cve-2024-27198-and-cve-2024-27199-update-to-2023-11-4-now/

Website update 🔥

We have changed our website a little, and now you can find much more useful materials there, including use cases, links to our resources, and updated documentation.

👉🏻 Read new docs and guides: https://docs.netlas.io/

CVE-2024-21899, -21900, -21901: Improper Authentication and other in QNAP NAS, 4.3 - 9.8 rating 🔥

Code injection, execution of arbitrary commands and, most interestingly, a vulnerability in the authentication that allows an attacker to compromise the entire system via network.

Search at Netlas.io:
👉🏻 Link: https://nt.ls/Wnycw
👉🏻 Dork: http.body_sha256:4a1815f3e87d6d623c22921d9c39b2de614351d71831976bbc807f571953ff21

Vendor's advisory: https://www.qnap.com/en/security-advisory/qsa-24-09

APSB24-05, APSB24-14: Multiple vulns in Adobe products, critical rating 🔥

Two vulnerabilities from the new Adobe security bulletin, the exploitation of which will allow an attacker to achieve arbitrary file system read, code execution, and security feature bypass.

Search at Netlas.io:
👉🏻 Link: https://nt.ls/EEZn7
👉🏻 Dork: tag.name:"adobe_experience_manager" OR tag.name:"adobe_coldfusion"

Vendor's advisory: https://helpx.adobe.com/security/security-bulletin.html

CVE-2024-23334: Path Traversal in aiohttp Python lib, 7.5 rating❗

An old vulnerability that has started to gain attention again recently. According to Cyble research, attackers have been scanning nodes with a vulnerable version of the library since the end of February. We recommend that everyone who uses it update immediately!

Search at Netlas.io:
👉 Link: https://nt.ls/lrzzv
👉 Dork: http.headers.server:"aiohttp"

Read more: https://www.bleepingcomputer.com/news/security/hackers-exploit-aiohttp-bug-to-find-vulnerable-networks/

🚧Planned update 🚧

The update will last 21.03.2024 from ~08:00 - 09:00 UTC ⏰, during which time the application will be unavailable.

Don't forget to save the results of your work before this.

Major Attack Surface Discovery Tool update🔥

New features:
- Grouping results;
- Group searches;
- Improved color segregation;
- Hiding excluded nodes;
- History tab;
and more.

👉 Read more: https://blog.netlas.io/major-update-for-attack-surface-discovery-tool-4ed4f1bc80fb
👉 Help topic: https://docs.netlas.io/easm/
👉 Try now: https://app.netlas.io/asd/

Come quickly and test the new functionality of Netlas! ✨

How to find industrial objects with Netlas.io? 🏭

Short cheat sheet based on one of our articles. A few filters will allow you to make sure that nearby factories are protected.

👉 Read more about industrial devices search: https://medium.com/@netlas/searching-industrial-infrastructure-with-netlas-io-49c08ca519a2