Multiple Nation-State Threat Actors Exploit CVE-2022-47966 and CVE-2022-42475

Multiple Nation-State Threat Actors Exploit CVE-2022-47966 and CVE-2022-42475>
– CISA
Multiple nation-state threat actors are actively exploiting CVE-2022-47966 and CVE-2022-42475, which are critical vulnerabilities in the Windows operating system, to gain access to sensitive systems and data, the US Cybersecurity and Infrastructure Security Agency (CISA) warned yesterday.
The vulnerabilities, which were first observed in September 2020, could potentially allow attackers to execute arbitrary code on vulnerable systems and gain administrative access.
The flaws were disclosed by Microsoft and patched with a security update released on 15 September 2020, but threat actors have been exploiting the vulnerabilities with code known as jscript.exe, as reported by CISA.
CISA advises users to immediately patch their systems with the latest security updates.
Additionally, CISA also recommends taking measures to detect and block potential malicious activity, including monitoring network traffic for suspicious activity and disabling unnecessary services and applications.
Link: http://kizzmyanthia.com/2023/09/28/multiple-nation-state-threat-actors-exploit-cve-2022-47966-and-cve-2022-42475/


Categories:

Tags: