SecuWiz VPN product vulnerabilities Security Update Advisory

Nov 19 2024

Overview

A security update has been released to address vulnerabilities in the Secuway SSL VPN product. Users of the affected product need to take security measures according to the provided solution.

Affected Products

Secuway SSL VPN version: U1.0
Secuway SSL VPN version: U2.0

Resolved Vulnerabilities

Insufficient Protection of Sensitive Data via Apple Devices (CWE-922)

System Authentication Bypass Vulnerability via Apple Devices (CWE-287)

Vulnerability Patches

Please apply the patch file from the manufacturer and check whether “/PatchDate_T4 ” is added to the version information.

※ Until the vulnerability is patched, you need to block VPN login using Apple devices.

Referenced Sites

[1] SecuWiz

https://www.secuwiz.co.kr

SecuWiz VPN product vulnerabilities Security Update Advisory

IBM Product Security Update Advisory (CVE-2024-39726)

WordPress Plugin Security Update Advisory (CVE-2024-10924, CVE-2024-8856)

Tags:

IBM Product Security Update Advisory (CVE-2024-39726)

WordPress Plugin Security Update Advisory (CVE-2024-10924, CVE-2024-8856)