CISA Issues Warning on Active Exploitation of UnRAR Software for Linux Systems | allinfosecnews.com

Aug. 11, 2022, 3:56 a.m. | noreply@blogger.com (Ravie Lakshmanan)

The Hacker News thehackernews.com

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a recently disclosed security flaw in the UnRAR utility to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation.
Tracked as CVE-2022-30333 (CVSS score: 7.5), the issue concerns a path traversal vulnerability in the Unix versions of UnRAR that can be triggered upon extracting a

cisa exploitation linux software systems

More from thehackernews.com / The Hacker News

Hackers Exploiting WP-Automatic Plugin Bug to Create Admin Accounts on WordPress Sites 2 hours ago | thehackernews.com

accounts admin automatic bug +18

North Korea's Lazarus Group Deploys New Kaolin RAT via Fake Job Lures 15 hours ago | thehackernews.com

access actor binary called +19

Network Threats: A Step-by-Step Attack Demonstration 21 hours ago | thehackernews.com

access advanced attack attackers +21

DOJ Arrests Founders of Crypto Mixer Samourai for $2 Billion in Illegal Transactions 21 hours ago | thehackernews.com

arrest arrests called criminal +17

Google Postpones Third-Party Cookie Deprecation Amid U.K. Regulatory Scrutiny 1 day, 1 hour ago | thehackernews.com

address authority browser chrome +24

State-Sponsored Hackers Exploit Two Cisco Zero-Day Vulnerabilities for Espionage 1 day, 2 hours ago | thehackernews.com

actor arcanedoor campaign cisco +28

U.S. Treasury Sanctions Iranian Firms and Individuals Tied to Cyber Attacks 1 day, 18 hours ago | thehackernews.com

april assets attacks command +19

Researchers Detail Multistage Attack Hijacking Systems with SSLoad, Cobalt Strike 1 day, 18 hours ago | thehackernews.com

attack called campaign cobalt +22

Major Security Flaws Expose Keystrokes of Over 1 Billion Chinese Keyboard App Users 1 day, 22 hours ago | thehackernews.com

app apps baidu chinese +22

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations

View on infosec-jobs.com

Cyber Security Cloud Solution Architect

@ Microsoft | London, London, United Kingdom

View on infosec-jobs.com

Compliance Program Analyst

@ SailPoint | United States

View on infosec-jobs.com

Software Engineer III, Infrastructure, Google Cloud Security and Privacy

@ Google | Sunnyvale, CA, USA

View on infosec-jobs.com

Cryptography Expert

@ Raiffeisen Bank Ukraine | Kyiv, Kyiv city, Ukraine

View on infosec-jobs.com

Senior Cyber Intelligence Planner (15.09)

@ OCT Consulting, LLC | Washington, District of Columbia, United States

View on infosec-jobs.com