The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added four vulnerabilities to its KEV catalog due to active exploitation. The flaws affect SimpleHelp, Samsung MagicINFO 9 Server, and D-Link DIR-823X routers. Notable is CVE-2024-57726, with a CVSS of 9.9, due to a lack of authorization that allows arbitrary code execution.
Technical details of vulnerabilities under active exploitation 🛡️
The critical flaw in SimpleHelp (CVE-2024-57726) allows unauthenticated attackers to execute remote commands without restrictions. Samsung MagicINFO 9 Server presents a command injection issue, while D-Link DIR-823X routers have a buffer overflow vulnerability. CISA recommends patching immediately or suspending use of these products until available updates are applied.
The same old story: patch or shut down and pray 😅
Another week, another list of flaws that attackers are already using like new toys. If you have a D-Link router at home, maybe it's time to ask if it's feeling okay or if it's already in zombie mode. The worst part isn't the CVSS of 9.9, but the poker face of manufacturers when you tell them the update has been ready for months.