WinWAR and Openfire vulnerabilities exploited in the wild
CISA added Openfire (CVE-2023-32315) and WinRAR (CVE-2023-38831) vulnerabilities to its Known Exploited Vulnerabilities Catalog based on evidence of active exploitation.
WinRAR
The top 20 vulnerabilities to patch now (that are most under attack)
Security firm Verint analyzed the top 20 vulnerabilities to patch now that are under active attack and exploited by cyber attack groups worldwide. The report is aimed at assisting security teams in prioritizing and enhancing their organization’s patch management efforts.
Microsoft provides new details on WinRar bug exploits
Microsoft security researchers revealed additional details on how cyber attackers were able to exploit the 19 year old WinRar vulnerability last March.
Attackers are exploiting WinRAR, a 19 year old vulnerability
Cyber attackers are exploiting a 19 year old high severity code execution vulnerability in WinRAR, a popular compression tool used to create and view archives in RAR or ZIP file formats and can unpack numerous archive file formats.