TR-21-0126 (Foxit Güvenlik Zafiyeti)

Genel Bilgi

Foxit ürünlerinde ACE zafiyeti tespit edilmiştir.

Etki

Mevcut güvenlik açıklıkları nedeniyle siber saldırganların zafiyetleri kullanarak saldırılarını gerçekleştirmeleri ihtimal dâhilindedir. Zafiyetin CVE kodları aşağıdaki gibidir:

CVE-2020-17419, CVE-2020-17418, CVE-2020-17421, CVE-2020-17423, CVE-2020-17424, CVE-2020-17425, CVE-2020-17426, CVE-2020-17427, CVE-2020-17430, CVE-2020-17431 ve CVE-2020-27857

Çözüm

Ulusal Siber Olaylara Müdahale Merkezi (USOM) kullanıcı ve sistem yöneticilerine ilgili dokümanları gözden geçirmelerini ve gerekli güncellemeleri yapılmasını tavsiye etmektedir.

Kaynaklar

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-17418

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-17419

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-17421

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-17423

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-17424

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-17425

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-17426

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-17427

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-17430

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-17431

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-17419

2021-02-10