資安事件新聞週報 2020/12/14 ~ 2020/12/18

 資安事件新聞週報 2020/12/14  ~  2020/12/18

1.重大弱點漏洞/後門/Exploit/Zero Day
SUSE Linux 緩衝區錯誤漏洞
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-9983

WebKit 資源管理錯誤漏洞
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-13584

NZXT CAM漏洞
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13509

AdRem NetCrunch 跨站脚本漏洞
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14478

資安事件新聞週報 2020/12/7 ~ 2020/12/11

 資安事件新聞週報 2020/12/7  ~  2020/12/11

1.重大弱點漏洞/後門/Exploit/Zero Day
QNAP Security Advisories - December 7th, 2020
https://www.bleepingcomputer.com/news/security/qnap-patches-qts-vulnerabilities-allowing-nas-device-takeover/
https://www.qnap.com/en/security-advisory/qsa-20-16
https://www.qnap.com/en/security-advisory/qsa-20-12
https://www.qnap.com/en/security-advisory/qsa-20-13
https://www.qnap.com/en/security-advisory/qsa-20-14
https://www.qnap.com/en/security-advisory/qsa-20-15

VERT Threat Alert: December 2020 Patch Tuesday Analysis
https://www.tripwire.com/state-of-security/vert/vert-threat-alert-december-2020-patch-tuesday-analysis/

Gafgyt Using Pulse Secure Vulnerability
https://prod-blog.avira.com/a-gafgyt-variant-that-exploits-pulse-secure-cve-2020-8218

NSA Warns Russian Hacker Exploiting VMware Bug to Breach Corporate Networks
https://thehackernews.com/2020/12/nsa-warns-russian-hacker-exploiting.html

WARNING — Critical Remote Hacking Flaws Affect D-Link VPN Routers
https://thehackernews.com/2020/12/warning-critical-remote-hacking-flaws.html

Apache 近日發布更新以解決Apache Struts 的安全性弱點
https://us-cert.cisa.gov/ncas/current-activity/2020/12/08/apache-releases-security-update-apache-struts-2

Apache發布針對Apache Tomcat的安全公告
http://mail-archives.us.apache.org/mod_mbox/www-announce/202012.mbox/%3C52858194-2efd-6f17-1821-9036c8494df0%40apache.org%3E

資安事件新聞週報 2020/11/30 ~ 2020/12/4

 資安事件新聞週報 2020/11/30  ~  2020/12/4

1.重大弱點漏洞/後門/Exploit/Zero Day
Oracle WebLogic已知RCE漏洞遭殭屍網路病毒積極鎖定
https://www.ithome.com.tw/news/141442

DarkIRC殭屍網絡利用Oracle WebLogic漏洞
https://www.4hou.com/posts/AAyl

研究：多款路由器內含已被開採的後門漏洞，包括於Walmart獨家銷售的中國品牌Jetstream
https://www.ithome.com.tw/news/141278

近5萬個存在漏洞的Fortinet SSL VPN存取位址在駭客論壇流傳
https://www.insoler.com/forum/topic/16061108294795.htm

快更新韌體！駭客公佈近5萬台有漏洞的Fortinet SSL VPN名單以及攻擊程式
https://reurl.cc/0OMm4l

Fortinet FortiClient 和 FortiOS 安全漏洞
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9295

資安事件新聞週報 2020/11/23 ~ 2020/11/27

 資安事件新聞週報 2020/11/23  ~  2020/11/27

1.重大弱點漏洞/後門/Exploit/Zero Day
兩中國製路由器被指有「後門」漏洞　沃爾瑪亞馬遜有售
https://reurl.cc/2gGExn

近五萬台 Fortinet VPN 登入資訊遭竊，全球多家金融機構與政府機關被駭
https://www.twcert.org.tw/tw/cp-104-4175-96cb7-1.html

Fortinet 社製 FortiOS の SSL VPN 機能の脆弱性 (CVE-2018-13379)
https://www.jpcert.or.jp/newsflash/2020112701.html

玩家用蘋果 T2 晶片漏洞　將 Mac 開機聲改成歷代 PlayStation 開機音樂
https://m.eprice.com.tw/tech/talk/1184/5588869/1

Red Hat ceph-ansible 安全漏洞
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25677

VMWare 產品多個漏洞
https://www.vmware.com/security/advisories/VMSA-2020-0026.html
https://www.auscert.org.au/bulletins/ESB-2020.4160/

VMware Security Advisory - VMSA-2020-0027
https://www.vmware.com/security/advisories/VMSA-2020-0027.html
https://kb.cert.org/vuls/id/724367

VMWare管理平臺產品Workspace One爆重大指令注入漏洞
https://www.ithome.com.tw/news/141292

VMWare 虛擬環境逃逸漏洞通告
https://cert.360.cn/warning/detail?id=df1ba30fbbfe62a3629dfef6ed96ac1c

資安事件新聞週報 2020/11/16 ~ 2020/11/20

 資安事件新聞週報 2020/11/16  ~  2020/11/20

1.重大弱點漏洞/後門/Exploit/Zero Day
臺灣未修補SMBGhost漏洞電腦全球最多，存在漏洞的電腦每5臺就有1臺在臺灣
https://www.ithome.com.tw/news/141225

Apple Lets Some of its Big Sur macOS Apps Bypass Firewall and VPNs
https://thehackernews.com/2020/11/apple-lets-some-of-its-big-sur-macos.html

Researcher Discloses Critical RCE Flaws In Cisco Security Manager
https://thehackernews.com/2020/11/researcher-discloses-critical-rce-flaws.html

英特爾CPU曝出漏洞：監視功耗就能輕鬆獲取數據
https://www.techbang.com/posts/82581-intel-cpu-platypus-attack

Intel Security Advisories
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00439.html
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00446.html
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00447.html
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00449.html

PrestaShop 安全漏洞
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26224

SAP Security Patch Day – November 2020
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=562725571

IBM Security Family PAM Content Update 4011.06142
https://exchange.xforce.ibmcloud.com/collection/9a90489777df83e8b915bab3f75d39fd

資安事件新聞週報 2020/11/9 ~ 2020/11/13

 資安事件新聞週報 2020/11/9  ~  2020/11/13

1.重大弱點漏洞/後門/Exploit/Zero Day

拒絕展延修補寬限期，Google準時公布GitHub高風險漏洞

https://www.ithome.com.tw/news/140965

【漏洞預警】Google Chrome瀏覽器存在安全漏洞(CVE-2020-16009)，允許攻擊者遠端執行任意程式碼，請儘速確認並進行更新

https://www.tcrc.edu.tw/new/new-list/google-chrome-cve-2020-16009

WordPress 擴充套件 wp-file-manager 漏洞，遭大規模用於駭侵攻擊

https://www.twcert.org.tw/tw/cp-104-4125-20090-1.html

Apple Watch Series 輸入驗證錯誤漏洞

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10017

VMware ESXi 高危漏洞的補丁被指不完整

https://blog.csdn.net/smellycat000/article/details/109523748

資安事件新聞週報 2020/11/2 ~ 2020/11/6

 資安事件新聞週報 2020/11/2  ~  2020/11/6

1.重大弱點漏洞/後門/Exploit/Zero Day

Apache Tomcat WebSocket拒絕服務漏洞（CVE-2020-13935）EXP公開，黑客攻擊正迫在眉睫

https://s.tencent.com/research/report/1172.html

Trend Micro InterScan Messaging Security Virtual Appliance 安全漏洞

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27019

Tomcat WebSocket拒絕服務漏洞（CVE-2020-13935）利用代碼公開預警

https://www.huaweicloud.com/notice/2018/20201106173340446.html

Fortinet FortiMail 授權問題漏洞

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15933

CloudBees Jenkins Active Directory Plugin 授權問題漏洞

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2302