轉發 台灣電腦網路危機處理暨協調中心 資安訊息警訊 TWCERTCC-200-202604-00000024

[內容說明]
【杜浦數位安全｜ThreatSonar Anti-Ransomware - Privilege Escalation】(CVE-2026-5967，CVSS：8.8) 已通過身分鑑別且具shell操作權限之遠端攻擊者，可利用此漏洞注入作業系統指令並以root權限執行。

[影響平台]
ThreatSonar Anti-Ransomware 4.0.0(含)以前版本

[建議措施]
請安裝修補程式20260302版本

[參考資料]
1. https://www.twcert.org.tw/tw/cp-132-10854-03015-1.html

Forwarded from Taiwan Computer Network Crisis Management and Coordination Center: Cybersecurity Alert TWCERTCC-200-202604-00000024

[Content Description]
【TeamT5｜ThreatSonar Anti-Ransomware - Privilege Escalation】(CVE-2026-5967, CVSS: 8.8) An authenticated remote attacker with shell access can exploit this vulnerability to inject operating system commands and execute them with root privileges.

[Affected Platforms]
ThreatSonar Anti-Ransomware versions 4.0.0 and earlier

[Recommended Actions]
Please install patch version 20260302.

[References]
1. https://www.twcert.org.tw/tw/cp-132-10854-03015-1.html