G 
I uncovered a trivial to execute bypass of Conditional Access via Microsoft Intune - if you are using device filters, you need to read this now!
#Microsoft #Entra #Intune #ConditionalAccess #SecurityFeatureBypass #SecurityVulnerability #MSRC
Neustradamus :xmpp: :linux:#libxml2 2.14.1 has been released (#Xmlsoft / #libxml / #XML / #ExtensibleMarkupLanguage / #CVE / #SecurityVulnerability) https://github.com/GNOME/libxml2
#libexpat 2.7.1 has been released (#Expat / #XML / #CVE / #SecurityVulnerability) https://libexpat.github.io/
#Roundcube 1.5.8 (LTS) has been released (#Webmail / #Mail / #IMAP / #SMTP / #LDAP / #Managesieve / #PHP / #MariaDB / #MySQL / #PostgreSQL / #SQLite / #OracleDB / #MSSQL / #CVE / #SecurityVulnerability) https://roundcube.net/
#Roundcube 1.6.8 (stable) has been released (#Webmail / #Mail / #IMAP / #SMTP / #LDAP / #Managesieve / #PHP / #MariaDB / #MySQL / #PostgreSQL / #SQLite / #OracleDB / #MSSQL / #CVE / #SecurityVulnerability) https://roundcube.net/
Stephen McMasterNew AI advancements bring forth new risks. Wiz Research has uncovered weaknesses in SAP AI Core, which could potentially allow unauthorised individuals to exploit the system and gain access to sensitive customer information. Fortunately, SAP has promptly addressed this issue. The findings from the research provide valuable insights. Check out the details here: https://www.wiz.io/blog/sapwned-sap-ai-vulnerabilities-ai-security #artificialintelligence #SAP #securityvulnerability
🐧na|\/|3#ApacheHTTPd 2.4.62 has been released (#Web / #Webserver / #http2 / #httpd / #Apache / #HTTPServer / #TLS13 / #ApacheSoftwareFoundation / #ASF / #CVE / #SecurityVulnerability) https://httpd.apache.org/
#ApacheHTTPd 2.4.61 has been released (#Web / #Webserver / #http2 / #httpd / #Apache / #HTTPServer / #TLS13 / #ApacheSoftwareFoundation / #ASF / #CVE / #SecurityVulnerability) https://httpd.apache.org/
🛡 H3lium@infosec.exchange/:~# 
regreSSHion: Remote Code Execution in OpenSSH Server (CVE-2024-6387)
Date: July 1, 2024
CVE: CVE-2024-6387
Vulnerability Type: Race Condition
CWE: [[CWE-362]], [[CWE-665]]
Sources: Qualys
Synopsis
A critical remote code execution (RCE) vulnerability has been identified in OpenSSH's server on glibc-based Linux systems, allowing unauthenticated attackers to execute arbitrary code as root.
Issue Summary
The vulnerability, identified as CVE-2024-6387, is a regression of a previously patched issue (CVE-2006-5051) and affects OpenSSH versions from 8.5p1 to 9.8p1. It arises from a signal handler race condition in the sshd server, leading to unsafe function calls within asynchronous signal handlers.
Technical Key Findings
The flaw involves sshd's SIGALRM handler, which calls non-async-signal-safe functions like syslog(), potentially leading to a heap corruption and enabling remote code execution. The exploit requires precise timing to interrupt specific code paths, leaving the system in an inconsistent state that can be exploited.
Vulnerable Products
- OpenSSH versions 8.5p1 to 9.8p1 on glibc-based Linux systems.
Impact Assessment
Exploitation of this vulnerability allows an attacker to execute arbitrary code as root on affected systems, potentially leading to complete system compromise.
Patches or Workaround
A fix has been implemented in OpenSSH by moving the async-signal-unsafe code to a synchronous context. Users are advised to update to the latest version or set LoginGraceTime to 0 as a temporary mitigation.
Tags
#OpenSSH #CVE-2024-6387 #RCE #RaceCondition #Linux #glibc #SecurityVulnerability #Exploit #Patch