https://a3sec.com/en/alerts Alerts {{ request.full_url }} en Fri, 09 Sep 2022 06:02:05 GMT 2022-09-09T06:02:05Z en https://a3sec.com/en/alerts/critical-security-vulnerability-in-vmware-products <div class="hs-featured-image-wrapper"> <a href="https://a3sec.com/en/alerts/critical-security-vulnerability-in-vmware-products" title="" class="hs-featured-image-link"> <img src="https://a3sec.com/hubfs/Alerta%20Nueva_Mesa%20de%20trabajo%201-4.png" alt="Critical security vulnerability in VMware products" class="hs-featured-image" style="width:auto !important; max-width:50%; float:left; margin:0 15px 15px 0;"> </a> </div> <div> <p>A critical authentication bypass vulnerability exists, identified as CVE-2022-31656, which is capable of affecting local domain users in multiple products. "A malicious actor with network access to the user interface can gain administrative access without needing to authenticate."Achieving administrative-level control over a remote system.&nbsp;</p> <p style="font-weight: bold;">This identified vulnerability affects Workspace ONE Access, Identity Manager, and vRealize Automation products.</p> </div> <div class="hs-featured-image-wrapper"> <a href="https://a3sec.com/en/alerts/critical-security-vulnerability-in-vmware-products" title="" class="hs-featured-image-link"> <img src="https://a3sec.com/hubfs/Alerta%20Nueva_Mesa%20de%20trabajo%201-4.png" alt="Critical security vulnerability in VMware products" class="hs-featured-image" style="width:auto !important; max-width:50%; float:left; margin:0 15px 15px 0;"> </a> </div> <div> <p>A critical authentication bypass vulnerability exists, identified as CVE-2022-31656, which is capable of affecting local domain users in multiple products. "A malicious actor with network access to the user interface can gain administrative access without needing to authenticate."Achieving administrative-level control over a remote system.&nbsp;</p> <p style="font-weight: bold;">This identified vulnerability affects Workspace ONE Access, Identity Manager, and vRealize Automation products.</p> </div> <img src="https://track.hubspot.com/__ptq.gif?a=4620545&amp;k=14&amp;r=https%3A%2F%2Fa3sec.com%2Fen%2Falerts%2Fcritical-security-vulnerability-in-vmware-products&amp;bu=https%253A%252F%252Fa3sec.com%252Fen%252Falerts&amp;bvt=rss" alt="" width="1" height="1" style="min-height:1px!important;width:1px!important;border-width:0!important;margin-top:0!important;margin-bottom:0!important;margin-right:0!important;margin-left:0!important;padding-top:0!important;padding-bottom:0!important;padding-right:0!important;padding-left:0!important; "> Fri, 09 Sep 2022 06:02:05 GMT https://a3sec.com/en/alerts/critical-security-vulnerability-in-vmware-products 2022-09-09T06:02:05Z Alertas A3Sec https://a3sec.com/en/alerts/a3sec-news-filtration-bd-coppel <div class="hs-featured-image-wrapper"> <a href="https://a3sec.com/en/alerts/a3sec-news-filtration-bd-coppel" title="" class="hs-featured-image-link"> <img src="https://a3sec.com/hubfs/Alerta%20Nueva_Mesa%20de%20trabajo%201-4.png" alt="A3Sec NEWS Filtration BD Coppel" class="hs-featured-image" style="width:auto !important; max-width:50%; float:left; margin:0 15px 15px 0;"> </a> </div> <div> <p>Hackers gather in underground forums and search for valuable data from organizations all over the Internet. For an indication of data breaches or an imminent attack, <span style="font-weight: bold;">IXDR</span> monitors a wide variety of sources on the Deep and <span style="font-weight: bold;">Dark Web.</span>&nbsp;</p> <p><span style="font-weight: bold;">IXDR</span> continuously monitors communications on the <span style="font-weight: bold;">"Dark Web"</span> to detect mentions of the most important organizations in the country or any particular case.</p> </div> <div class="hs-featured-image-wrapper"> <a href="https://a3sec.com/en/alerts/a3sec-news-filtration-bd-coppel" title="" class="hs-featured-image-link"> <img src="https://a3sec.com/hubfs/Alerta%20Nueva_Mesa%20de%20trabajo%201-4.png" alt="A3Sec NEWS Filtration BD Coppel" class="hs-featured-image" style="width:auto !important; max-width:50%; float:left; margin:0 15px 15px 0;"> </a> </div> <div> <p>Hackers gather in underground forums and search for valuable data from organizations all over the Internet. For an indication of data breaches or an imminent attack, <span style="font-weight: bold;">IXDR</span> monitors a wide variety of sources on the Deep and <span style="font-weight: bold;">Dark Web.</span>&nbsp;</p> <p><span style="font-weight: bold;">IXDR</span> continuously monitors communications on the <span style="font-weight: bold;">"Dark Web"</span> to detect mentions of the most important organizations in the country or any particular case.</p> </div> <img src="https://track.hubspot.com/__ptq.gif?a=4620545&amp;k=14&amp;r=https%3A%2F%2Fa3sec.com%2Fen%2Falerts%2Fa3sec-news-filtration-bd-coppel&amp;bu=https%253A%252F%252Fa3sec.com%252Fen%252Falerts&amp;bvt=rss" alt="" width="1" height="1" style="min-height:1px!important;width:1px!important;border-width:0!important;margin-top:0!important;margin-bottom:0!important;margin-right:0!important;margin-left:0!important;padding-top:0!important;padding-bottom:0!important;padding-right:0!important;padding-left:0!important; "> Fri, 09 Sep 2022 05:58:52 GMT https://a3sec.com/en/alerts/a3sec-news-filtration-bd-coppel 2022-09-09T05:58:52Z Alertas A3Sec https://a3sec.com/en/alerts/buffer-overflow-via-pdf-file-and-cve-2022-2624 <div class="hs-featured-image-wrapper"> <a href="https://a3sec.com/en/alerts/buffer-overflow-via-pdf-file-and-cve-2022-2624" title="" class="hs-featured-image-link"> <img src="https://a3sec.com/hubfs/Alerta%20Nueva_Mesa%20de%20trabajo%201-4.png" alt="Buffer overflow via .PDF file and CVE-2022-2624." class="hs-featured-image" style="width:auto !important; max-width:50%; float:left; margin:0 15px 15px 0;"> </a> </div> <div> <p>The <span style="font-weight: bold;">CVE-2022-2624</span> vulnerability was reported for the first time in June and aims to deceive a user through social engineering through the manipulation of the HTML code of a web page in the Microsoft Edge browser (search engine based on Chromium), this in order to make available a .PDF file, which, if opened by a user, will lead to the exploitation of a buffer overflow vulnerability.</p> </div> <div class="hs-featured-image-wrapper"> <a href="https://a3sec.com/en/alerts/buffer-overflow-via-pdf-file-and-cve-2022-2624" title="" class="hs-featured-image-link"> <img src="https://a3sec.com/hubfs/Alerta%20Nueva_Mesa%20de%20trabajo%201-4.png" alt="Buffer overflow via .PDF file and CVE-2022-2624." class="hs-featured-image" style="width:auto !important; max-width:50%; float:left; margin:0 15px 15px 0;"> </a> </div> <div> <p>The <span style="font-weight: bold;">CVE-2022-2624</span> vulnerability was reported for the first time in June and aims to deceive a user through social engineering through the manipulation of the HTML code of a web page in the Microsoft Edge browser (search engine based on Chromium), this in order to make available a .PDF file, which, if opened by a user, will lead to the exploitation of a buffer overflow vulnerability.</p> </div> <img src="https://track.hubspot.com/__ptq.gif?a=4620545&amp;k=14&amp;r=https%3A%2F%2Fa3sec.com%2Fen%2Falerts%2Fbuffer-overflow-via-pdf-file-and-cve-2022-2624&amp;bu=https%253A%252F%252Fa3sec.com%252Fen%252Falerts&amp;bvt=rss" alt="" width="1" height="1" style="min-height:1px!important;width:1px!important;border-width:0!important;margin-top:0!important;margin-bottom:0!important;margin-right:0!important;margin-left:0!important;padding-top:0!important;padding-bottom:0!important;padding-right:0!important;padding-left:0!important; "> Fri, 09 Sep 2022 05:57:37 GMT https://a3sec.com/en/alerts/buffer-overflow-via-pdf-file-and-cve-2022-2624 2022-09-09T05:57:37Z Alertas A3Sec https://a3sec.com/en/alerts/vulnerabilities-in-ios <div class="hs-featured-image-wrapper"> <a href="https://a3sec.com/en/alerts/vulnerabilities-in-ios" title="" class="hs-featured-image-link"> <img src="https://a3sec.com/hubfs/Alerta%20Nueva_Mesa%20de%20trabajo%201-4.png" alt="Vulnerabilities in IOS" class="hs-featured-image" style="width:auto !important; max-width:50%; float:left; margin:0 15px 15px 0;"> </a> </div> <p>The CVE-2022-32894 vulnerability was reported on August 18 and found on Apple macOS systems, allowing an application to execute arbitrary code with kernel privileges, i.e. full access to the device, and is declared highly functional.</p> <div class="hs-featured-image-wrapper"> <a href="https://a3sec.com/en/alerts/vulnerabilities-in-ios" title="" class="hs-featured-image-link"> <img src="https://a3sec.com/hubfs/Alerta%20Nueva_Mesa%20de%20trabajo%201-4.png" alt="Vulnerabilities in IOS" class="hs-featured-image" style="width:auto !important; max-width:50%; float:left; margin:0 15px 15px 0;"> </a> </div> <p>The CVE-2022-32894 vulnerability was reported on August 18 and found on Apple macOS systems, allowing an application to execute arbitrary code with kernel privileges, i.e. full access to the device, and is declared highly functional.</p> <img src="https://track.hubspot.com/__ptq.gif?a=4620545&amp;k=14&amp;r=https%3A%2F%2Fa3sec.com%2Fen%2Falerts%2Fvulnerabilities-in-ios&amp;bu=https%253A%252F%252Fa3sec.com%252Fen%252Falerts&amp;bvt=rss" alt="" width="1" height="1" style="min-height:1px!important;width:1px!important;border-width:0!important;margin-top:0!important;margin-bottom:0!important;margin-right:0!important;margin-left:0!important;padding-top:0!important;padding-bottom:0!important;padding-right:0!important;padding-left:0!important; "> Fri, 09 Sep 2022 05:56:15 GMT https://a3sec.com/en/alerts/vulnerabilities-in-ios 2022-09-09T05:56:15Z Alertas A3Sec