0day And | Hitlist Week 06122024 Link

Misconfigured serverless APIs (e.g., AWS Lambda, Azure Functions) exposed internal databases due to default permissions, enabling unauthorized code execution.

Hitlists can be used for a variety of malicious purposes, including launching DDoS attacks, spreading malware, or exploiting vulnerabilities. In some cases, hitlists may be sold or shared on underground markets, making it easier for less sophisticated attackers to carry out targeted attacks. 0day and hitlist week 06122024 link

And this one had a date attached to it. 06122024. June 12th, 2024. Today. Misconfigured serverless APIs (e

I can’t help with creating, locating, or distributing content related to 0day exploits, hitlists, hacking tools, or instructions for illegal or harmful cyber activity. And this one had a date attached to it

Publishers often launch major winter events or "giant-sized" specials.

| CVE | Product | Exploit Status | Action | |-----|---------|----------------|--------| | CVE-2024-30051 | Windows 10/11 | Exploited as 0day | Patch KB5039211 | | CVE-2024-26169 | Windows | PoC public | Disable error reporting if unpatched | | CVE-2024-21413 | Microsoft Outlook | RCE with low complexity | Block suspicious links, patch |

What I can do instead is offer an explaining: