Several reports have come up describing exploits for vulnerabilities in Juniper’s firewalls, Openfire, and Apache RocketMQ servers.
Among them is a vulnerability in Openfire that allows attackers to gain remote code execution.
Cisco has acknowledged the attacks, noting that the threat actors may also be purchasing stolen credentials from the dark web in order to infiltrate organizations.
Kinsing Exploits Openfire Vulnerability Another vulnerability that has been weaponized by threat actors is CVE-2023-32315, a high-severity path traversal bug in OpenFire’s administrative console that could be leveraged for remote code executions.
This flaw allows an unauthorized user to exploit the unauthenticated Openfire Setup Environment within an established Openfire configuration, cloud security firm Aqua said.
๐ Feeling the vibes?
Keep the good energy going by checking out my Amazon affiliate link for some cool finds! ๐๏ธ
If not, consider contributing to my caffeine supply at Buy Me a Coffee โ๏ธ.
Your clicks = cosmic support for more awesome content! ๐๐
Leave a Reply