US Cybersecurity Agency and US Infrastructure (CISA) added Three disadvantages of security, each affecting AMI Megarac, D-Link Dir-859 router and Fortinet Fortos, to known exploited vulnerabilities (Ship) A catalog based on evidence of active operation.
The list of vulnerabilities is the following –
- Cve-2024-54085 (CVSS Assessment: 10.0) – Auctivated by False vulnerability in host Redfish AMI Megarac SPX, which can allow a remote attacker to take control
- Cve-2024-0769 (CVSS Assessment: 5.3) -Touity of the D-Link Dir-859 router, which allows you to privilege escalation and unauthorized control (invalid)
- Cve-2019-6693 (CVSS assessment: 4.2) – vulnerability of cryptographic cryptographic cryptographic cryptographic cryptographic cryptographic cryptographic cryptographic cryptographic cryptographic cryptographic cryptographic cryptographic cryptographic cryptographic cryptographic cryptographic cryptographic cryptographic cryptographic cryptographic cryptographic cryptographic cryptographic cryptographic cryptographic cryptographic crypto crypto crypto crypto crypto crypto crypto crypto crypto crypto crypt
ECLIPSIUM Software Safety Company disclosed The CVE-2024-54085 said earlier this year that the deficiency could be used to carry out a wide range of malware, including the deployment of malware and firmware firmware.
Currently, there are no details about how the deficit is armed in the wild that can use it and the scale of the attacks. The Hacker News addressed Eclypsium for comments and we will update the story when we get the answer.
Operation Cve-2024-0769 was disclosed A Greynoise Representative Intelligence Firm Around a year ago as part of a company designed to reset accounts, passwords, groups and descriptions for all the device users.
It is worth noting that D-Link Dir-859 routers reached the end of life (EOL) As of December 2020, that is, the vulnerability will remain unnamed on these devices. Users are advised to retire and replace the product.
With regard to Cve-2019-6693 abuse, multiple Security providers It is reported that the subjects of the threat associated with the AKIRA Ransomware Ransomware Ransomware Coarding have used vulnerabilities to get initial access to target networks.
In the light of the active exploitation of these deficiencies of the Federal Civil Executive Agency (FCEB), the necessary mitigations are required by July 16, 2025 to ensure their networks.
