CVE-2023-28130
published 2023-07-26CVE-2023-28130: Local user may lead to privilege escalation using Gaia Portal hostnames page.
PriorityP353high7.2CVSS 3.1
AVNACLPRHUINSUCHIHAH
EPSS
21.38%
97.3th percentile
Local user may lead to privilege escalation using Gaia Portal hostnames page.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| checkpoint | gaia_portal | — | — |
| checkpoint | gaia_portal | — | — |
| checkpoint | gaia_portal | — | — |
| checkpoint | gaia_portal | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
Sentinelone
Iran-Backed Cyber Av3ngers Escalates Campaigns Against U.S. Critical Infrastructure
blogs_sentinelone·2023-11-30
Iran-Backed Cyber Av3ngers Escalates Campaigns Against U.S. Critical Infrastructure
Earlier this week, CISA released an advisory warning of active exploitation of Programmable Logic Controllers (PLCs) used in Water and Wastewater treatment plants following intrusions into two U.S. critical infrastructure installations. The advisory and attacks come in the wake of increased public threats made by the Iran-backed Cyber Av3ngers “ hacktivist ” group to target industries using Israeli-manufactured OT and ICS equipment.
In this post, we describe the background to these attacks and detail recent Cyber Av3ngers activity, exploring the wider implications for critical infrastructure security and how organizations can mitigate these cyber risks .
## Intrusion at the Municipal Water Authority of Aliquippa
On November 25, 2023, The Municipal Water Authority of Aliquippa disclosed
Sentinelone
Iran-Backed Cyber Av3ngers Escalates Campaigns Against U.S. Critical Infrastructure
blogs_sentinelone·2023-11-30
Iran-Backed Cyber Av3ngers Escalates Campaigns Against U.S. Critical Infrastructure
Earlier this week, CISA released an advisory warning of active exploitation of Programmable Logic Controllers (PLCs) used in Water and Wastewater treatment plants following intrusions into two U.S. critical infrastructure installations. The advisory and attacks come in the wake of increased public threats made by the Iran-backed Cyber Av3ngers “hacktivist” group to target industries using Israeli-manufactured OT and ICS equipment.
In this post, we describe the background to these attacks and detail recent Cyber Av3ngers activity, exploring the wider implications for critical infrastructure security and how organizations can mitigate these cyber risks.
## Intrusion at the Municipal Water Authority of Aliquippa
On November 25, 2023, The Municipal Water Authority of Aliquippa disclosed an
http://packetstormsecurity.com/files/173918/Checkpoint-Gaia-Portal-R81.10-Remote-Command-Execution.htmlhttp://seclists.org/fulldisclosure/2023/Aug/4http://seclists.org/fulldisclosure/2023/Jul/43https://pentests.nl/pentest-blog/cve-2023-28130-command-injection-in-check-point-gaia-portal/https://support.checkpoint.com/results/sk/sk181311http://packetstormsecurity.com/files/173918/Checkpoint-Gaia-Portal-R81.10-Remote-Command-Execution.htmlhttp://seclists.org/fulldisclosure/2023/Aug/4http://seclists.org/fulldisclosure/2023/Jul/43https://pentests.nl/pentest-blog/cve-2023-28130-command-injection-in-check-point-gaia-portal/https://support.checkpoint.com/results/sk/sk181311
2023-07-26
Published