CVE-2021-41163 – Discourse / Discourse – Command injection

December 8, 2021

CVE-2021-41163 is a command injection vulnerability impacting multiple versions of Discourse. An exploit was observed in open source and subsequently shared in the underground.

Summary:

CVE-2021-41163 is a command injection vulnerability impacting multiple versions of Discourse. An exploit was observed in open source and subsequently shared in the underground.

PoC Links(if available):

0day : Discourse SNS webhook RCE –
https://0day.click/recipe/discourse-sns-rce/

Known Counter Measures:

Discourse addressed the vulnerability in a GitHub software development platform saved commit change with a patch.

Links to patches(if available)

https://github.com/discourse/discourse/commit/fa3c46cf079d28b086fe1025349bb00223a5d5e9

You may have missed

Cobalt Strike

Cobalt Strike Beacon Detected – 111[.]229[.]148[.]68:1443

November 5, 2024
Cobalt Strike

Cobalt Strike Beacon Detected – 47[.]94[.]168[.]145:9999

November 5, 2024
Cobalt Strike

Cobalt Strike Beacon Detected – 167[.]71[.]207[.]129:8080

November 5, 2024
Cobalt Strike

Cobalt Strike Beacon Detected – 101[.]91[.]125[.]228:443

November 5, 2024
image

[RHYSIDA] – Ransomware Victim: Fylde Coast Academy Trust

November 5, 2024