all InfoSec news
XZ Utils Backdoor Vulnerability (CVE-2024-3094) Advisory
Security Boulevard securityboulevard.com
Overview NSFOCUS CERT recently detected that a backdoor vulnerability in XZ Utils (CVE-2024-3094) was disclosed from the security community, with a CVSS score of 10. Because the SSH underlying layer relies on liblzma, an attacker could exploit this vulnerability to bypass SSH authentication and gain unauthorized access to affected systems, allowing arbitrary code execution. After […]
The post XZ Utils Backdoor Vulnerability (CVE-2024-3094) Advisory appeared first on NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers …
access advisory arbitrary code arbitrary code execution attacker authentication backdoor blog bypass cert code code execution community cve cve-2024 cve-2024-3094 cvss cvss score emergency-response exploit nsfocus score security security community ssh systems unauthorized unauthorized access vulnerability xz utils