CISA fügt dem KEV-Katalog die Sicherheitslücke USAHERDS hinzu, die aktiv ausgenutzt wird

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a now-patched high-severity security flaw impacting Acclaim Systems USAHERDS to the Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation in the wild.

The vulnerability in question is CVE-2021-44207 (CVSS score: 8.1), a case of hard-coded, static credentials in Acclaim USAHERDS that could allow an attacker to ultimately execute arbitrary code on susceptible servers.

Specifically, it concerns the use of static ValidationKey and DecryptionKey values in version 7.4.0.1 and prior that could be weaponized to achieve remote code execution on the server that runs the application. That said, an attacker would have to leverage some other means to obtain the keys in the first place.

“These keys are used to provide security for the application ViewState,” Google-owned Mandiant said in advisory for the flaw back in December 2021. “A threat actor with knowledge of these keys can trick the application server into deserializing maliciously crafted ViewState data.”

“A threat actor with knowledge of the validationKey and decryptionKey for a web application can construct a malicious ViewState that passes the MAC check and will be deserialized by the server. This deserialization can result in the execution of code on the server.”

While there are no new reports of CVE-2021-44207 being weaponized in real-world attacks, the vulnerability was identified as being abused by the China-linked APT41 threat actor back in 2021 as a zero-day as part of attacks targeting six U.S. state government networks.

Federal Civilian Executive Branch (FCEB) agencies are recommended to apply vendor-provided mitigations by January 13, 2025, to safeguard their networks against active threats.

The development comes as Adobe warned of a critical security flaw in ColdFusion (CVE-2024-53961, CVSS score: 7.8), which it said already has a known proof-of-concept (PoC) exploit that could cause an arbitrary file system read.

The vulnerability has been addressed in ColdFusion 2021 Update 18 and ColdFusion 2023 Update 12. Users are advised to apply the patches as soon as possible to mitigate potential risks.

Quelle

Kommentar verfassen Kommentieren abbrechen

London, GB

2:00 am, Mai 10, 2025

10°C

L: 7° | H: 11°

Fühlt sich an wie 9°C° klarer Himmel

Luftfeuchtigkeit: 74 %

Druck: 1020 mb

Wind: 5 mph NE

Windböe: 0 mph

UV-Index: 0

Niederschlag: 0 mm

Wolken: 6%

Regen Chance: 0%

Sichtbarkeit: 10 km

Sonnenaufgang: 5:16 am

Sonnenuntergang: 8:37 pm

TäglichStündlich

Tägliche VorhersageStündliche Vorhersage

Today 10:00 pm

7° | 11°°C 0 mm 0% 11 mph 77 % 1020 mb 0 mm/h

Tomorrow 10:00 pm

11° | 23°°C 0.29 mm 29% 11 mph 80 % 1015 mb 0 mm/h

Mo. Mai 12 10:00 pm

13° | 22°°C 0.73 mm 73% 14 mph 94 % 1016 mb 0 mm/h

Di. Mai 13 10:00 pm

12° | 20°°C 0 mm 0% 12 mph 76 % 1022 mb 0 mm/h

Mi. Mai 14 10:00 pm

10° | 20°°C 0 mm 0% 11 mph 78 % 1024 mb 0 mm/h

Today 4:00 am

9° | 10°°C 0 mm 0% 5 mph 77 % 1020 mb 0 mm/h

Today 7:00 am

11° | 11°°C 0 mm 0% 5 mph 75 % 1020 mb 0 mm/h

Today 10:00 am

17° | 17°°C 0 mm 0% 8 mph 40 % 1019 mb 0 mm/h

Today 1:00 pm

20° | 20°°C 0 mm 0% 11 mph 30 % 1018 mb 0 mm/h

Today 4:00 pm

21° | 21°°C 0 mm 0% 11 mph 33 % 1017 mb 0 mm/h

Today 7:00 pm

17° | 17°°C 0 mm 0% 10 mph 42 % 1016 mb 0 mm/h

Today 10:00 pm

14° | 14°°C 0 mm 0% 8 mph 64 % 1016 mb 0 mm/h

Tomorrow 1:00 am

12° | 12°°C 0 mm 0% 5 mph 77 % 1015 mb 0 mm/h

Name	Preis	24H (%)
Bitcoin(BTC)	€91,458.22	0.10%
Ethereum(ETH)	€2,071.68	5.88%
Fesseln(USDT)	€0.89	0.02%
XRP(XRP)	€2.08	1.22%
Solana(SOL)	€152.33	5.45%
USDC(USDC)	€0.89	0.01%
Dogecoin(DOGE)	€0.181574	4.40%
Shiba Inu(SHIB)	€0.000013	4.72%
Pepe(PEPE)	€0.000011	12.10%
Peanut das Eichhörnchen(PNUT)	€0.315286	56.13%

CISA fügt dem KEV-Katalog die Sicherheitslücke USAHERDS hinzu, die aktiv ausgenutzt wird

Teilen:

Kommentar verfassen Kommentieren abbrechen

Verbindung zum Dienstprogramm

Nützlicher Link

Newsletter

Folgen Sie uns