"The vulnerability is caused by an overly permissive security configuration with improper rule ordering, allowing an unauthenticated user to perform malicious configuration upload and code injection, resulting in arbitrary server-side code exec"
Ivanti released a fix for a critical flaw in Ivanti Xtraction that can allow a remote authenticated attacker to read sensitive files and write arbitrary HTML files to a web directory, enabling information disclosure and possible client-side attacks. Fortinet published advisories for critical issues affecting FortiAuthenticator and FortiSandbox products, where improper access control or missing authorization can allow unauthenticated attackers to execute unauthorized code or commands through crafted requests or HTTP requests. SAP shipped fixes for critical vulnerabilities including SQL injection in SAP S/4HANA and a missing authentication check in SAP Commerce cloud configuration. The SAP Commerce issue is linked to an overly permissive security configuration with improper rule ordering that enables malicious configuration upload and code injection leading to arbitrary server-side code execution.
#vulnerability-management #authentication-bypass #arbitrary-code-execution #sql-injection #product-security-fixes
Read at The Hacker News
Unable to calculate read time
Collection
[
|
...
]