Metasploit is an open-supply penetration making an are attempting out framework created by Rapid7 that lets in security professionals to simulate attacks in opposition to pc methods, networks, and functions.

It involves quite a lot of instruments and modules that may perchance well also be feeble to take a look at the aim procedure’s security, detect vulnerabilities, and spend them to attain catch entry to to the procedure.

EHA

Two most modern noteworthy vulnerabilities which like gained different consideration are CVE-2023-20198, which impacts the Cisco IOS XE OS, and CVE-2023-46604, which impacts Apache MQ and can result in the deployment of ransomware.

In step with Rapid7 experiences, eight fresh Metasploit exploit modules like additionally been added, targeting the most most modern vulnerabilities.

Doc

Defend Your Storage With SafeGuard

Is Your Storage & Backup Methods Fully True? – Observe 40-second Tour of SafeGuard

StorageGuard scans, detects, and fixes security misconfigurations and vulnerabilities at some point of hundreds of storage and backup devices.

Eight Recent Metasploit Exploit Modules

Cisco IOS-XE Unauthenticated Uncover Line Interface (CLI) execution:

Three modules are incorporated in this PR: The main module, admin/http/cisco_ios_xe_cli_exec_cve_2023_20198 executes unauthenticated faraway CLI instructions by utilizing CVE-2023-20198.

The second module, auxiliary/admin/http/cisco_ios_xe_cli_exec_cve_2023_20198 executes unauthenticated faraway OS instructions by utilizing both CVE-2023-20198 and CVE-2023-20273.

The third module, exploit/linux/misc/cisco_ios_xe_rce employs the identical two vulnerabilities to attain an arbitrary payload on the aim.

MagnusBilling Utility Unauthenticated Remote Uncover Execution

This involves an exploit module that makes spend of MagnusBilling variations 6 and 7’s CVE-2023-30258. This uncover injection vulnerability permits unauthenticated faraway code execution in the context of the patron executing the discover server course of.

Apache ActiveMQ Unauthenticated Remote Code Execution

This pull query is an exploit module for CVE-2023-46604, which impacts the Apache ActiveMQ OpenWire transport unmarshaller.

AjaxPro Deserialization Remote Code Execution

This PR involves an RCE module for AjaxPro that makes spend of afraid records deserialization to create faraway code execution on the aim OS in the context of the patron running the internet pages that feeble AjaxPro.

Apache NiFi Credentials Catch

This PR adds a post module for Apache NiFi to steal configuration and credential records.

Home windows Catch PL/SQL Developer Connection Credentials

Right here’s a Post module in which Home windows internet PL/SQL developer connection credentials.

Recent Aspects and Enhancements

This PR reduces the volume of requests despatched to the host by the Home windows checkvm post module whereas making an are attempting to detect which hypervisor the session is working in by retaining the first responses in instance variables for additonal usage in the module.
It improves the Kerberos service authenticator hostname matching for ccache credentials.
Updates the auxiliary/scanner/http/grafana_plugin_traversal module to add a disclosure date and a hyperlink to the conventional disclosure weblog post.

Bug Fixes

This PR addresses a steadiness direct with the f5_bigip_tmui_rce_cve_2023_46747 module. The entire necessary aspects about the adjustments will seemingly be found in right here.