It’s listed as medium severity and appears to require the hacker to already have terminal access to the system. It’s also already patched and there’s a quick and easy workaround if your distro doesn’t have the fix yet.
I think that the OP(the article author) is not looking at this the right way. Like yea it sucks another exploit is found, but it’s not like if it wasn’t found it doesn’t exist.
I think its much better to have them published and fixed then to live in blissful ignorance when someone could be exploiting it in the wild.
Oh FFS, the rest of my life is doomed to be spent updating software
🌏🧑🚀🔫🧑🚀
Always has been!
It is more important than ever to introduce geo-ip conditional access on your network(s). That way you limit your attack surface by a significant margin.
My personal stuff 100%
For work? No such choice (apart from the obvious ones)
Your work most likely already has conditional access through MS Entra
Not a Microsoft shop, but yes they have a pretty extensive IDS for anything public facing, another company to handle internal Auth





