Mitigation Instructions for CVE-2024-28987
Subject: Mitigating CVE-2024-28987: Hardcoded Credentials Vulnerability in SolarWinds Web Help Desk
1 min read
CyRisk Vulnerability Management Team : Feb 15, 2024 11:14:15 AM
SUBJECT: Apple Multiple Products Type Confusion Vulnerability (CVE-2024-23222)
TECH STACK: Various Apple products (specific devices and software versions to be confirmed upon analysis completion)
DATE(S) ISSUED: 01/22/2024
NVD Last Modified: 01/26/2024
CRITICALITY: HIGH (CVSS Score: 8.8 NIST)
OVERVIEW:
A type confusion vulnerability exists in various Apple products, potentially allowing attackers to execute arbitrary code. Apple is aware of a report that this vulnerability may have been exploited.
SOLUTION:
REFERENCES:
Third-Party Advisories:
Confirmation & Additional Information:
Subject: Mitigating CVE-2024-28987: Hardcoded Credentials Vulnerability in SolarWinds Web Help Desk
Subject: Mitigating CVE-2017-1000486: Remote Code Execution Vulnerability in PrimeTek PrimeFaces
Subject: Mitigating Vulnerability in Unsupported Drupal 8.x