Hello and welcome to the Wednesday, July 26, 2020, 3 edition of the Sandsenet Storm Center's Stormcast.

My name is Johannes Ulrich, and today I'm recording from Jacksonville, Florida.

Today, let's jump right into currently exploited vulnerabilities.

Imani published an advisory

regarding its Imani

endpoint endpoint manager mobile,

formerly known as Mobile Iron Core,

fixing a vulnerability CVE

202023-35078

with a perfect CVSS score

of 10.0. Apparently there's an authentication bypass vulnerability

that allows unauthorized users to access the device without proper authentication. The problem

here is that this is already being exploited. Norway released,

press release, saying that they had 12 of the ministries in their country compromised by

this vulnerability. All currently supported versions of the product are affected as well as some unsupported,

so end-of-life releases as well.

So must patch here and looks like according to Shodan that there are more than 2,900 mobile iron

user portals exposed online.

And talking about software needing patches, we also got patches from Latian for Confluence.

Three remote code execution vulnerabilities are being addressed here with a CVSS score

between 7.5 and 8.5.

This affects Confluence Data Center and Server, two of the vulnerabilities,

...