Vendor

Micronaut

3 briefs RSS

Unusual Child Process Execution from Linux Web Servers

This rule detects unusual child process executions originating from web server processes on Linux systems, which attackers may use to maintain persistence on a compromised system by exploiting web server vulnerabilities.

Jira +20 persistence execution command_and_control initial_access linux webserver

2r 4t 2w ago

medium threat

Suspicious Command Execution via Web Server on Linux

2 rules 3 TTPs

Identifies suspicious command executions via a web server on Linux systems, which may suggest a vulnerability and remote shell access.

Elastic Defend +43 persistence initial-access vulnerability linux

2r 3t 2w ago

medium advisory

Micronaut TimeConverterRegistrar Memory Exhaustion via Accept-Language Header

3 rules 2 TTPs

Micronaut's `TimeConverterRegistrar` has an unbounded `formattersCache` that allows memory exhaustion via a crafted `Accept-Language` header, where an unauthenticated attacker can crash the JVM by sending requests with novel locale tags to `@Format`-annotated endpoints, growing the cache until heap memory is exhausted, affecting Micronaut applications with `micronaut-context` versions 4.3.0 and above, up to but not including 4.10.22.

micronaut-context dos memory-exhaustion micronaut

3r 2t Nov 2, 2024