
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) recently updated its Known Exploited Vulnerabilities (KEV) catalog to include a critical vulnerability in Palo Alto Networks’ Expedition tool, which has already been patched. Tracking as CVE-2024-5910, this vulnerability has a CVSS score of 9.3 and is due to missing authentication that could permit an attacker to gain control over an admin account.
CISA’s alert indicates that this flaw allows an attacker with network access to take over an Expedition admin account, potentially giving them access to sensitive configuration data, credentials, and more. All versions of Expedition prior to 1.2.92, released in July 2024, are affected by this vulnerability.
Although there are no specific reports on real-world exploitation at this time, Palo Alto Networks confirmed awareness of CISA’s alert and acknowledged evidence of active exploitation.
In addition to the Palo Alto Networks vulnerability, CISA identified two other flaws recently added to the KEV catalog. One is a privilege escalation vulnerability within the Android Framework (CVE-2024-43093), which Google flagged as undergoing limited, targeted exploitation. The second flaw, CVE-2024-51567, has a perfect CVSS score of 10.0 and allows a remote, unauthenticated attacker to execute commands as root on CyberPanel, which has since been patched in version 2.3.8.
In late October 2023, it was reported that this CyberPanel vulnerability had been heavily exploited, leading to the deployment of PSAUX ransomware on over 22,000 instances exposed online. Furthermore, multiple ransomware groups took advantage of this flaw, with some instances of files being encrypted multiple times.
To protect against these vulnerabilities, federal civilian agencies are advised to patch them by November 28, 2024.
Welcome to DediRock, your trusted partner in high-performance hosting solutions. At DediRock, we specialize in providing dedicated servers, VPS hosting, and cloud services tailored to meet the unique needs of businesses and individuals alike. Our mission is to deliver reliable, scalable, and secure hosting solutions that empower our clients to achieve their digital goals. With a commitment to exceptional customer support, cutting-edge technology, and robust infrastructure, DediRock stands out as a leader in the hosting industry. Join us and experience the difference that dedicated service and unwavering reliability can make for your online presence. Launch our website.