Hello and welcome to the Wednesday, January 25th, 2023 edition of the Sands and its Stormsendors Stormcast.

My name is Johannes Ulrich and I am recording from Jacksonville, Florida.

I summarized yesterday's Apple patches.

So if you're interested in how much overlap there is between

different Apple operating systems, you may find this helpful. As usual, there's quite a bit

of overlap here because these operating systems between iPad OS, iOS, MacOS, and so on,

are sharing quite a bit of code.

Also somewhat noteworthy that TVOS did not get an update.

I suspect this will come later this week.

Well, maybe next week.

Again, there should be quite a bit of overlap here in particular when it comes to things like WebKit or some of the kernel issues.

We've got a couple products here where it starts to get difficult to figure out if a vulnerability is

actually new or if it's just sort of something new about an existing vulnerability.

First product here is Manage Engine, in particular CVE 2022-47966. This is actually

a vulnerability in the Apache Sun to Arori product or Sun to R Rio product. That product is used to

implement the SAML single sign-on in Manage Engine.

It fixed a vulnerability in October.

However, it took a while for Manage Engine actually to patch its product and sort of one of those typical dependency supply chain issues where there was a delay.

This vulnerability was patched in

Manage Engine on January 10th. On January 18th, which was late last week, and I think I covered

this, Horizon 3 AI, did then come out with a proof of concept.

This vulnerability is now officially considered exploited in the wild,

...