CISA added Openfire (CVE-2023-32315) and WinRAR (CVE-2023-38831) vulnerabilities to its Known Exploited Vulnerabilities Catalog based on evidence of active exploitation.
Security firm Verint analyzed the top 20 vulnerabilities to patch now that are under active attack and exploited by cyber attack groups worldwide. The report is aimed at assisting security teams in prioritizing and enhancing their organization’s patch management efforts.
Microsoft security researchers revealed additional details on how cyber attackers were able to exploit the 19 year old WinRar vulnerability last March.
Cyber attackers are exploiting a 19 year old high severity code execution vulnerability in WinRAR, a popular compression tool used to create and view archives in RAR or ZIP file formats and can unpack numerous archive file formats.