ProHoster > Blog > litaba tsa inthanete > Bofokoli bo boholo lisebelisoa tsa bongaka bakeng sa ho beha leihlo mokuli

Bofokoli bo boholo lisebelisoa tsa bongaka bakeng sa ho beha leihlo mokuli

Khamphani ea CyberMDX phatlalatsoa tlhahisoleseding mabapi le bofokodi tse tsheletseng, e amang lisebelisoa tse fapaneng tsa bongaka tsa GE Healthcare tse etselitsoeng ho beha maemo a mokuli leihlo. Bofokoli bo bohlano bo abeloa boemo bo phahameng ka ho fetesisa (CVSSv3 10 ho 10). Bofokoli bo 'nile ba bitsoa MDhex' me haholo-holo bo amana le tšebeliso ea lintlha tse neng li tsejoa esale pele tse neng li sebelisoa ho pholletsa le letoto lohle la lisebelisoa.

  • CVE-2020-6961 - ho tsamaisoa ka lisebelisoa tsa senotlolo se tloaelehileng sa SSH bakeng sa mohala oohle oa sehlahisoa, se u lumellang hore u hokahane le sesebelisoa leha e le sefe le ho etsa khoutu ho sona. Senotlolo sena se boetse se sebelisoa nakong ea ts'ebetso ea ntlafatso.
  • CVE-2020-6962 - lintlha tse boletsoeng esale pele tse tloaelehileng ho lisebelisoa tsohle bakeng sa ho ngola le ho bala phihlello ea sistimi ea faele ka protocol ea SMB;
  • CVE-2020-6963 - bokhoni ba ho sebelisa lits'ebetso tsa MultiMouse le Kavoom KM ho laola sesebelisoa hole (ho etsisa keyboard, mouse le clipboard) ntle le netefatso;
  • CVE-2020-6964 - litekanyetso tse boletsoeng esale pele tsa khokahano ea VNC bakeng sa lisebelisoa tsohle;
  • CVE-2020-6965 - seta esale pele tlokotsing mofuta oa Webmin o lumellang phihlello e hole ka litokelo tsa metso;
  • CVE-2020-6966 - Motsamaisi oa ts'ebetso ea ntlafatso e sebelisoang lisebelisoa tse lumellang spoofing ea ntlafatso (lintlafatso li netefalitsoe ke senotlolo se tsebahalang sa SSH).

Mathata a ama li-server tsa pokello ea telemetry ApexPro le CARESCAPE Telemetry Server, CIC (Clinical Information Center) le CSCS (CARESCAPE Central Station) platforms, hammoho le B450, B650 le B850 mekhoa ea ho hlahloba bakuli. Bofokoli bo lumella taolo e felletseng holim'a lisebelisoa, tse ka sebelisoang ho etsa liphetoho boemong ba sistimi ea ts'ebetso, ho tima alamo, kapa ho senya data ea mokuli.

Ho hlasela, mohlaseli o tlameha ho khona ho theha marang-rang a marang-rang ho sesebelisoa, mohlala ka ho hokahanya le marang-rang a sepetlele. E le li-workaround tsa ts'ireletso nyeheloa arola subnet ka lisebelisoa tsa bongaka ho tloha marang-rang a sepetlele se akaretsang le thibela likou tsa marang-rang 22, 137, 138, 139, 445, 10000, 5225, 5800, 5900 le 10001 ho firewall.

Source: opennet.ru

Reka sebaka se tšepahalang sa libaka tse nang le ts'ireletso ea DDoS, li-server tsa VPS VDS 🔥 Reka sebaka se tšepahalang sa ho amohela webosaete ka tšireletso ea DDoS, li-server tsa VPS VDS | ProHoster