The CISA has issued an urgent warning about the active exploitation of vital weaknesses in Synacor’s Zimbra Collaboration and Ivanti’s Endpoint Manager (EPM).
Firms utilizing these products are encouraged to promptly address possible dangers.
CVE-2024-45519: Synacor Zimbra Collaboration Command Execution Vulnerability
A new vulnerability, CVE-2024-45519, has been uncovered in the Synacor Zimbra Collaboration platform.
This weakness is located in the postjournal service and could allow unauthorized users to remotely execute commands.
Although it is unclear whether malicious actors have exploited this vulnerability in ransomware schemes, the potential for misuse is significant.
Organizations employing Zimbra Collaboration are urged to implement the advised precautions from Synacor.
If these safeguards are unavailable, it is highly recommended to discontinue the product usage. CISA has stipulated a deadline for resolving this issue by October 24, 2024, underscoring the urgency of tackling this problem.
CVE-2024-29824: Ivanti Endpoint Manager SQL Injection Vulnerability
The Ivanti Endpoint Manager (EPM) faces a threat due to a SQL injection vulnerability identified as CVE-2024-29824.
This loophole enables an unauthorized attacker on the same network to carry out arbitrary code execution on the Core server. Similar to the Zimbra vulnerability, there is no current proof of its exploitation in ransomware assaults, but the risk remains substantial.
Ivanti has issued directives for mitigating this vulnerability, and organizations are advised to promptly follow these instructions. The deadline for applying these measures is October 23, 2024.
CISA’s alert emphasizes the crucial nature of these vulnerabilities and their potential impact on organizations globally.
Synacor and Ivanti have proposed strategies for mitigation, stressing the necessity of swift action to shield sensitive data and preserve operational integrity.
The post CISA Alerts to Active Exploitation of Zimbra & Ivanti Endpoint Manager Vulnerability appeared first on Cyber Security News.