all InfoSec news
Alert: Active Exploitation of TP-Link, Apache, and Oracle Vulnerabilities Detected
May 3, 2023, 8:48 p.m. | /u/aptconsulting
cybersecurity www.reddit.com
These vulnerabilities are tracked as:
* CVE-2023-1389 (TP-Link Archer AX-21 Command Injection Vulnerability) — CVSS 8.8
* CVE-2021-45046 (Apache Log4j2 Deserialization of Untrusted Data Vulnerability) — CVSS 9.0
* CVE-2023-21839 (Oracle WebLogic Server Unspecified Vulnerability) — CVSS 7.5
CVE-2023-1389 affects TP-Link Archer AX-21 routers and has been exploited by threat actors linked to the …
agency alert apache apache log4j2 catalog cisa command command injection cve cve-2021-45046 cve-2023-1389 cvss cybersecurity data deserialization exploitation exploited flaws infrastructure infrastructure security injection kev known exploited vulnerabilities link log4j2 oracle security security flaws tp-link tp-link archer untrusted vulnerabilities vulnerability
More from www.reddit.com / cybersecurity
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Information Security Engineers
@ D. E. Shaw Research | New York City
Dir-Information Security - Cyber Analytics
@ Marriott International | Bethesda, MD, United States
Security Engineer - Security Operations
@ TravelPerk | Barcelona, Barcelona, Spain
Information Security Mgmt- Risk Assessor
@ JPMorgan Chase & Co. | Bengaluru, Karnataka, India
SAP CO Consultant
@ Atos | Istanbul, TR