Flexihub vs eltima1/31/2024 ![]() For example, to escalate user privileges.Īccops responded to the news with a FAQ page for concerned users. Code could potentially be executed on the kernel of the operating system with which Eltima SDK was used. SentinelLabs used different methods for the various solutions found to be vulnerable, including Amazon AppStream, NoMachine for Windows, Accops HyWorks for Windows, FlexiHub and Donglify. The organization created an overflow to execute code in the kernel of an operating system. SentinelLabs found vulnerabilities in the drivers that Eltima SDK uses to redirect USB data. WorkSpaces is among the services that offer Eltima SDK to its users. A practical example of such an endpoint is a virtual machine in AWS WorkSpaces. One of the tools in Eltima SDK allows the data of a local USB device to be forwarded to a remote endpoint, thereby driving its functionality. Their organizations were at risk for months. Millions of users come into contact with Eltima SDK worldwide. Multiple vendors, including Amazon (AWS), incorporate the library into their products and cloud services. A necessary precaution to prevent abuse during the vulnerable phase.Įarlier this year, SentinelLabs found a vulnerability in Eltima SDK. Only after a patch is applied, SentinelLabs communicates openly about an incident. Findings are initially shared with the vendor or developer of a vulnerable service or product. Year-round, the organization searches and finds vulnerabilities in commonly used technology. SentinelLabs is an extension of SentinelOne. As the threats have since been patched, the researcher goes public with a technical report. SentinelLabs claims responsibility for finding a severe vulnerability in multiple cloud services, including popular services from AWS.
0 Comments
Leave a Reply.AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |