Active Exploitation of Vulnerabilities in Apple, Google, Microsoft, Palo Alto and SAP products

Published on 24 Aug 2022

Updated on 09 Sep 2022

There have been reports of active exploitation of vulnerabilities affecting Apple, Google, Microsoft, Palo Alto and SAP products.

The vulnerabilities are as follows:

  • CVE-2017-15944 - Palo Alto Networks PAN-OS and Panorama products contain a remote code execution vulnerability that could be performed without prior authentication when exploited in conjunction with other vulnerabilities.
  • CVE-2022-21971 - Microsoft Windows Runtime contains a vulnerability due to a boundary error when processing Revisable Form Text (RFT) files in Windows Runtime, allowing remote code execution.
  • CVE-2022-22536 - Multiple SAP products contain HTTP request smuggling vulnerability that could allow functions to be executed impersonating a victim or poisoning intermediary Web caches.
  • CVE-2022-26923 - Microsoft Active Directory Certificate Services (ADCS) contains a privilege escalation vulnerability that could allow a low-privileged user to escalate privileges to domain administrator when ADCS is running on the domain.
  • CVE-2022-2856 - Google Chrome Intents contains an insufficient input validation vulnerability that could allow untrusted input data to execute remote code.
  • CVE-2022-32893 - Apple iOS, macOS and iPadOS contain an out-of-bounds write vulnerability that could allow an application to execute code with kernel privileges.
  • CVE-2022-32894 - Apple iOS, macOS and iPadOS contain an out-of-bounds write vulnerability that could allow for remote code execution when processing maliciously crafted web content.

 

Users and administrators of affected products are advised to apply the relevant security updates immediately.

More information is available here:

https://security.paloaltonetworks.com/CVE-2017-15944

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21971

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2022-26923

https://chromereleases.googleblog.com/2022/08/stable-channel-update-for-desktop_16.html

https://support.apple.com/en-gb/HT213412

https://support.apple.com/en-gb/HT213413

https://blogs.sap.com/2022/02/11/remediation-of-cve-2022-22536-request-smuggling-and-request-concatenation-in-sap-netweaver-sap-content-server-and-sap-web-dispatcher

https://www.csa.gov.sg/singcert/Alerts/al-2022-004

https://www.csa.gov.sg/singcert/Alerts/al-2022-040

https://www.csa.gov.sg/singcert/Alerts/al-2022-041