Summary: A vulnerability identified as CVE-2024-4577, initially targeted at Japanese organizations, has now shown a global exploitation trend. Threat intelligence firm GreyNoise has reported wider attacks, with potential for remote code execution affecting PHP-CGI setups. The continuing threat indicates that organizations worldwide need to implement urgent security measures.
Affected: PHP-CGI setups, various global organizations
Keypoints :
- Exploitation of CVE-2024-4577 is no longer limited to Japan, with increased attack activity observed globally.
- 79 known methods to exploit the vulnerability could lead to remote code execution on compromised systems.
- Attack patterns have been reported in regions including the US, Singapore, and Japan, raising alarm for potential future threats.
Source: https://therecord.media/bug-affecting-php-scripts-global-issue