Zacco logotypeDigital Trust

Monthly Security Digest for June

Every month, we are covering the major security events for our clients. Please find an exclusive selection below.

CISA Warns Of Active Exploitation Of PwnKit Linux Vulnerability
The U.S Cybersecurity and Infrastructure Agency (CISA) has added a high-severity Linux Vulnerability known as PwnKit to its list of bugs. PwnKit is a memory corruption bug that unprivileged users can exploit to gain full root privileges on Linux systems with the default configurations. […]

New UnRAR Vulnerability affects Zimbra Webmail Servers
A new security vulnerability has been discovered in RARlab’s UnRAR utility and if it is successfully exploited then it allows a remote attacker to execute arbitrary code on a system that relies on the binary. According to the researchers at Sonar, this vulnerability enables an attacker to create files outside of the target extraction directory when an application or victim user extracts an untrusted archive. […]

New FabricScape Bug In Microsoft Azure Service
According to the researchers at Palo Alto Networks, a new security flaw is affecting Microsoft Service Fabric that could be exploited to obtain permissions and seize control of all nodes in a cluster. The flaw is exploited on containers that are configured to have runtime access. […]

Back to all insights