Intrusions leveraging flaws impacting BeyondTrust Privileged Remote Access and Remote Support and Qlik Sense have been added to the Cybersecurity and Infrastructure Security Agency's (CISAs) Known Exploited Vulnerabilities (KEV) catalog, Security Affairs reports.
More notable of the newly-added bugs is the medium-severity BeyondTrust PRA and RS operating system command injection flaw, tracked as CVE-2024-12686, which has been leveraged by Chinese state-sponsored actors alongside CVE-2024-12686 to compromise the U.S. Treasury Department.
Exploitation of CVE-2024-12686 could allow malicious file uploads and also OS command execution. On the other hand, Qlik Sense is impacted by the critical severity HTTP tunneling issue, tracked as CVE-2023-48365, which attackers could leverage to enable privilege escalation and HTTP request delivery to backend servers.
Organizations beyond the federal government have also been advised to examine CISA's KEV catalog and promptly address these new security bugs.
