CipherTechs discovered an admin authentication bypass 0day in JFrog Artifactory. Patches and work around are available. Be sure to find out if your in-house dev team uses Artifactory. Shout-outs to @jfrog for their vuln disclosure process!.

Update Chrome!

Auth bypass affecting multiple VMware products

RT @mariuszbit: - ". and then he said to sign my malware.exe with faked Microsoft cert to evade AVs/EDRs. Would you believe?". (￣y▽￣)╭ Oh….

Patch Atlassian products:

OpenSSL RCE

Pedro and Darren from CipherTechs Red Team credited in Zyxel advisory.

Months of fun for pentesters - new Confluence exploitable bug

sort by date added. These are actively exploited bugs - good priority list for patching.

there's been a few of these. Along with patching, be sure to remove management interfaces from the Internet.

WSO2 exploit for CVE-2022-29464 is now public Patch details here

Senior Penetration Tester

RT @vxunderground: LAPSUS$ extortion group claims to have breached @Okta. They have released 8 photos as proof. The photos we are sharing….

RT @SecureWorld: Sandy Bacik, Director of Audit and Compliance at @CipherTechs, will present on PCI 4.0 next week at SecureWorld Philadelph….

Another fun Linux LPE

container escape "Containers running with AppArmor, SELinux or Seccomp are protected".

Zabbix RCE

Polkit LPE. Reminder to make removing setuid part of your standard Linux builds.

RT @TheDFIRReport: Can confirm!. ➡️Splashtop.SRUtility.exe. ➡️AnyDesk.AnyDesk.exe.AnyDeskMSI.exe. ➡️Atera.AteraAgent.exe.AgentPackageSTRemo….

Arbitrary file write on Windows domain controllers Microsoft guidance here

This could be like shellshock where it takes weeks to find all the appliances and SaaS that are affected. If you use log4j (and you probably do) check out and This is a juicy bug.