Threat Intelligence RedLegg CTI

2 min read

Emergency Vulnerability Bulletin - 11/29/22

https://www.redlegg.com/hubfs/Theme-2024/overlay-red.png featured image

TABLE OF CONTENTS

By: RedLegg Blog

Oracle Fusion Middleware Unspecified Vulnerability

Identifier: CVE-2022-35587

Exploit or POC: Yes (Actively Being Exploited)

Update: https://chromereleases.googleblog.com/2022/11/stable-channel-update-for-desktop_24.html

Description: CVE-2022-35587 allows Oracle Access Manger to be easily compromised. Authentication and user interaction is not required for successful exploitation. An attacker with network access via HTTP can employ a series of attacks to evoke an account takeover of the Oracle Access Manager.

Mitigation recommendation: Patching is currently the only method of mitigation

RedLegg Action: None at this time.

 

 

Similar Blogs

World map with epicenters of activity with lines drawn to and from each. Cyber threat maps.
Threat Intelligence

Top 8 Cyber Threat Maps to Monitor Global Cyber Attacks

Read More
Threat Intelligence CTI Report

Threat Intel: ATP27, FRP, TTNG, and More…

EXECUTIVE SUMMARY THREAT INTELLIGENCE AT REDLEGG This report serves as a comprehensive resource,...

Read More
Hands around a Ouija board
Threat Intelligence RedLegg CTI

Summoning Cyber Awareness: Exorcising the Malevolent Realm...

EXECUTIVE SUMMARY RedLegg would like to recognize the efforts instituted by the Cybersecurity &...

Read More
Connect with Us
(312) 757-4941
Contact Us
©2024, RedLegg | Privacy Policy