{ads}

Critical RCE Flaw in GFI KerioControl Allows Remote Code Execution via CRLF Injection

Written By Thursday, 9 January 2025 Add Comment



January 09, 2025 at 03:05PM

Threat actors are attempting to take advantage of a recently disclosed security flaw impacting GFI KerioControl firewalls that, if successfully exploited, could allow malicious actors to achieve remote code execution (RCE). The vulnerability in question, CVE-2024-52875, refers to a carriage return line feed (CRLF) injection attack, paving the way for HTTP response splitting, which could then

from The Hacker News https://ift.tt/HlmIiGA

0 Response to "Critical RCE Flaw in GFI KerioControl Allows Remote Code Execution via CRLF Injection"

Post a Comment

Subscribe to: Post Comments (Atom)

Article Top Ads

Central Ads Article 1

Middle Ads Article 2

Article Bottom Ads