WALLSEC’s Post

📢 It's #PatchTuesday for #SAP again! Even though none of the newly released security notes are marked as critical, users are advised to patch as soon as possible. Check here ⬇ for more details: 🔗 https://lnkd.in/eNKd8hQq

⚠ regreSSHion: RCE in OpenSSH's server, on glibc-based Linux systems (CVE-2024-6387) ⚠ Qualys research team managed to get a working RCE exploit in default configurations on Linux systems using glibc (most of them do). ℹ https://lnkd.in/dYDNDvCy 📌 Information on patch availability and affected versions. ➡ Debian: https://lnkd.in/epU8ecZy ➡ Ubuntu: https://lnkd.in/eNHpY9Mp https://lnkd.in/eFkEDmzv ➡ RedHat states only RHEL9 is affected: https://lnkd.in/ee3X95n4 ➡ FreeBSD, although probably not (easily) exploitable into RCE without GLIBC: https://lnkd.in/ekt3Nu-b Since the regression update was introduced in SSH Portable, probably many Linux distributions are affected. We will update this post, as more information is published. #ssh #rce #vulnerability

🔥 "Hot News" on SAP's #PatchTuesday! The company discloses a file upload vulnerability in SAP #NetWeaver Application Server ABAP and #ABAP Platform as well as multiple vulnerabilities in SAP CX Commerce. Find out more below 👇 and patch ASAP ⌛ 🔗 https://lnkd.in/gQPUHCNS #sapsecurity #vulnerabilitymanagement

⭐ 🌌 May the Fourth be with you as you guard your passwords like the Empire guards the Death Star plans! ⚔ 🚀 👾 🤖 💪 ⚔ Make sure your passwords are at least 12 characters and consist of four types of characters (upper and lower-case letters, digits, symbols), use MFA and most importantly never use the same password for all your accounts. Instead, use a password manager (protected by a strong password itself!) to keep track of all your different passwords. 🔐 🎆 Happy Star Wars and World Password Day! 🎊

📢 The April's issue of #SAP's #PatchTuesday is out! Check here for more details and patch today 👇 🔗 https://lnkd.in/eT9Uc-8E #sapsecurity #NetWeaver #patchmanagement

What does happiness mean to us? Seeing all the boxes checked in this checklist! 😃 🙌 Happy #InternationalDayofHappiness! ✨ 🎉 #computersecurity #itsecurity #infosec #sapsecurity

📢 Two of the 10 new security notes on yesterday's #SAPPatchDay are rated as "Hot News" 🔥 and involve code injection vulnerabilities in #SAP Build Apps and #NetWeaver AS Java. For more details, check 🌐 https://lnkd.in/dBXPYx9v and PATCH ASAP! 🔐 #sapsecurity #itsecurity #vulnerabilitymanagement #patchtuesday

Thank you to all our strong, brilliant, extraordinary WALLSEC Women in Cybersecurity for your incredible contributions and for making such a great impact every day! 🌟 🎉 Happy International Women's Day! #internationalwomensday2024 #womenincybersecurity #itsecurity #womenincyber

📢 In the latest #SAP Patch Day, the company released a security note on a severe code injection vulnerability in SAP Application Basis (CVE-2024-22131). ⚠ Users are urged to apply the patch ASAP to mitigate the potential threat. 🔗 https://lnkd.in/dbyHe_3h #sapsecurity #patchtuesday #vulnerabilitymanagement #itsecurity #infosec #patchtoday