Here’s a quick update on the latest zero-day vulnerability news.
Core takeaway
- Zero-day vulnerabilities continue to surface across multiple vendors, with active exploitation often tied to public advisories and emergency patches. This means applying vendor-released patches and monitor advisories is critical for reducing risk.[2][5]
Recent highlights (high level)
- Fortinet FortiManager (CVE-2024-47575) was disclosed as a critical zero-day with reported exploitation in the wild, affecting configuration data and credentials on managed devices. Organizations using FortiManager should review the advisory and apply patches or mitigations as soon as available.[1][2]
- Chrome and Windows ecosystem activity includes zero-day events tied to browser or kernel components, with several campaigns rapidly moving to exploit patched and unpatched environments. Keeping browsers and OS components updated is essential to reduce exposure.[5][1]
- Patch Tuesday cycles have repeatedly included multiple zero-day fixes among broader updates, underscoring the need for regular patch management across Windows, Office, and related products.[2][5]
What this means for you
- If you manage IT infrastructure or endpoints, prioritize:
- Checking for and applying recent patches from Fortinet if you use FortiManager.
- Verifying that all browsers (Chrome, Firefox, etc.) and the underlying OS are up to date.
- Reviewing security advisories from your vendors on any newly disclosed zero-day vulnerabilities relevant to your stack (network gear, VPNs, collaboration suites, etc.).
- Implement proactive measures:
- Enable rapid vulnerability response workflows, including Coordinated Vulnerability Disclosure (CVD) practices where applicable.
- Maintain active monitoring for indicators of compromise (IoCs) related to zero-days you’re exposed to.
If you’d like, I can tailor a quick action plan for your environment in São Paulo (Brazil) or help you prioritize patches based on the specific products you run. I can also summarize the most recent vendor advisories and extract the immediate remediation steps. Please share your current tech stack or the vendors you’re concerned about.
Citations
- Zero-day news and Fortinet CVE-2024-47575 context.[1]
- Patch Tuesday and broad zero-day coverage, including Microsoft and Ivanti items.[2]
- The latest zero-day coverage aggregations and trends.[5]
Sources
ZDI IDZDI CANAFFECTED VENDOR(S)CVECVSS v3.0PUBLISHEDUPDATEDTITLE ZDI-23-1810ZDI-CAN-21521QEMUCVE-2023-41356.02023-12-20 QEMU NVMe Out-Of-Bounds Read Information Disclosure Vulnerability ZDI-23-1809ZDI-CAN-21819TP-LinkCVE-2023-502256.82023-12-19 TP-Link TL-WR902AC dm_fillObjByStr Stack-based Buffer Overflow Remote Code Execution Vulnerability … ZDI-23-1766ZDI-CAN-20530Extreme NetworksCVE-2023-462718.82023-12-12 Extreme Networks AP410C ah_webui Missing Authentication for Critical Function Remote...
www.zerodayinitiative.comZero-day (0day) vulnerability tracking project database. All zero-day vulnerabilities since 2006.
www.zero-day.czAllSec.sh — a real-time aggregator of cybersecurity news, vulnerability disclosures, and security research from across the web.
allsec.shStay informed about the latest cybersecurity Zero-day threats, solutions, and best practices.
vonwallace.comRead the latest zero-day attack news from The Daily Swig. Zero-day vulnerabilities present a serious security risk to organizations around the world.
portswigger.netZero-Day Vulnerabilities News, how-tos, features, reviews, and videos
www.csoonline.comThe latest news about Zero-Day
www.bleepingcomputer.comThe latest news about Zero-Day
www.bleepingcomputer.comZero-Day: Get the latest news, trends, research, and analysis from the cybersecurity experts at Rapid7.
old.rapid7.com