{"uuid": "d9317f1d-e238-4d24-a07f-c5beb5952be3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21608", "type": "published-proof-of-concept", "source": "https://t.me/TopCyberTechNews/247", "content": "Top Security News for 03/02/2023\n\nRansomware in December 2022\nhttps://www.malwarebytes.com/blog/threat-intelligence/2023/02/ransomware-in-december-2022 \n\nCybersecurity and privacy tips you can teach your 5+-year-old\nhttps://www.malwarebytes.com/blog/news/2023/02/cybersecurity-and-privacy-tips-you-can-teach-your-5-year-old \n\nDiscovering Six Critical Docker Desktop Privilege Escalation Vulnerabilities. (Bonus: New OSS Tool!)\nhttps://www.reddit.com/r/netsec/comments/10rylf9/discovering_six_critical_docker_desktop_privilege/ \n\nAdobe Acrobat Reader - resetForm - CAgg UaF - RCE Exploit - CVE-2023-21608\nhttps://www.reddit.com/r/netsec/comments/10s95yz/adobe_acrobat_reader_resetform_cagg_uaf_rce/ \n\nCisco fixes vulnerabilities in ICS appliances. NIST\u2019s anti-phishing guidelines. OneNote exploitation. HeadCrab malware. Recent actions by Russian threat actors. Trends in state-directed cyber ops.\nhttps://thecyberwire.com/podcasts/daily-podcast/1752/notes \n\nEMBA - Automated firmware security scanner v1.2.1 released\nhttps://www.reddit.com/r/netsec/comments/10rrlm0/emba_automated_firmware_security_scanner_v121/ \n\nRemote code execution exploit chain available for VMware vRealize Log Insight\nhttps://www.csoonline.com/article/3687171/remote-code-execution-exploit-chain-available-for-vmware-vrealize-log-insight.html#tk.rss_all \n\nISC Stormcast For Friday, February 3rd, 2023 https://isc.sans.edu/podcastdetail.html?id=8354, (Fri, Feb 3rd)\nhttps://malware.news/t/isc-stormcast-for-friday-february-3rd-2023-https-isc-sans-edu-podcastdetail-html-id-8354-fri-feb-3rd/66893#post_1 \n\nTC39 proposal for mitigating prototype pollution\nhttps://www.reddit.com/r/netsec/comments/10s6730/tc39_proposal_for_mitigating_prototype_pollution/ \n\nNew High-Severity Vulnerabilities Discovered in Cisco IOx and F5 BIG-IP Products\nhttps://thehackernews.com/2023/02/new-high-severity-vulnerabilities.html \n\n    \nFollow Top Cyber News at https://t.me/TopCyberTechNews\nFeel free to DM me at https://twitter.com/ShayaFeedman", "creation_timestamp": "2023-02-15T08:01:52.000000Z"}