CVE-2024-52875

Over 12,000 GFI KerioControl firewalls are at risk due to a critical remote code execution (RCE) flaw (CVE-2024-52875), If you’re using KerioControl, make sure to update to version 9.4.5 Patch 2 ASAP to secure your system! #CyberSecurity #DataProtection https://t.co/JpbMQCzu09

Több mint 12 000 KerioControl tűzfal van kitéve ismerten kihasznált RCE hibának Több mint 12 000 GFI KerioControl tűzfal van kitéve a CVE-2024-52875 azonosítón nyomon követhető kritikus RCE (Remote Code Execution – távoli kódfuttatás) sebezhetőségnek. A KerioControl egy hálóza…

Más de 12.000 firewalls KerioControl expuestos en una vulnerabilidad RCE explotada ⚠️ CVE-2024-52875 https://t.co/rRc1wWBG0J https://t.co/nNy4Wx6Lo4 https://t.co/C2lYL53MSX

Over 12,000 KerioControl firewalls exposed to exploited RCE flaw. Over twelve thousand GFI KerioControl firewall instances are exposed to a critical remote code execution vulnerability tracked as CVE-2024-52875. https://t.co/Qyzt4ipsRX https://t.co/0rQcd3TFqA

Plus de 12 000 firewalls KerioControl exposés à une faille CVE-2024-52875 exploitée pour une exécution de code à distance. Une alerte critique pour les Analystes Sécurité passionnés par les menaces cyber et les exploits. #CyberSec #AlerteSécurité 👉 https://t.co/yWh4bfSiUV

#cyberNEWS Over 12,000 KerioControl firewalls exposed to exploited RCE flaw. Over twelve thousand GFI KerioControl firewall instances are exposed to a critical remote code execution vulnerability tracked as CVE-2024-52875. https://t.co/ORzOJd3GE4

Over 12,000 GFI KerioControl firewall instances are exposed to a critical remote code execution vulnerability tracked as CVE-2024-52875☝️🤖 #vulnerability #flaw https://t.co/1rrySmLApR https://t.co/aowjZsRahF

Over 12,000 GFI KerioControl firewalls are reportedly exposed to a critical remote code execution vulnerability known as CVE-2024-52875, raising serious security concerns for users. #CyberSecurity #VulnerabilityAlert https://t.co/ZKnejC7CxV

Over 12K GFI KerioControl firewall instances are exposed to a critical RCE vulnerability (CVE-2024-52875). Patch now to protect your networks! #CyberSecurity #InfoSec https://t.co/XqyScqNAV6

Una vulnerabilidad de ciberseguridad crítica (CVE-2024-52875) afecta a los firewalls GFI KerioControl en sus versiones 9.2.5 a 9.4.5. Esta falla, que puede ser explotada para la ejecución remota de código (RCE), reside en varias rutas URI no autenticadas de la interfaz web. 🧉

Since 2025-02-05 we are reporting daily GFI Kerio Control firewall instances vulnerable to CVE-2024-52875 which can (possibly) be leveraged for RCE. Data shared in https://t.co/qxv0Gv5ELc We see 12,229 unpatched instances on 2025-02-09 worldwide: https://t.co/LRMyelsSuL https:/

[CVE-2024-52875: HIGH] Vulnerability found in GFI Kerio Control 9.2.5 - 9.4.5 allows Open Redirect, HTTP Response Splitting, and XSS attacks. Remote command execution possible through admin interface upgrade feat...#cybersecurity,#vulnerability https://t.co/5E99O8PRVj https://t.c

CVE-2024-52875 An issue was discovered in GFI Kerio Control 9.2.5 through 9.4.5. The dest GET parameter passed to the /nonauth/addCertException.cs and /nonauth/guestConfirm.cs and /… https://t.co/7sMjSzBvBm

🚨 La vulnerabilidad CVE-2024-52875 en GFI KerioControl expone a empresas en España a serios riesgos de ejecución remota de código. ¡Actúa ahora y actualiza tus sistemas! Más información aquí: https://t.co/X3l6SPi5Rv #Ciberseguridad #GFI #Vulnerabilidad

The critical RCE flaw in GFI KerioControl firewalls, CVE-2024-52875, allows attackers to inject malicious inputs via CRLF injection, leading to HTTP response splitting and potential XSS attacks.

آسیب پذیری جدیدی با کد شناسایی CVE-2024-52875 و از نوع CRLF injection برای GFI KerioControl firewall منتشر شده است. این محصول ترکیبی از فایروال ، vpn ،آنتی ویروس و IPS می باشد و نسخه های 9.2.5 تا 9.4.5 این محصول دارای این آسیب پذیری هستند. https://t.co/Poz3aKYxT1 https://t.co/EZv

🚨 Detection for Kerio Control's CVE-2024-52875 has been added. ~500 vulnerable instances have been found. Hosting providers & CERTs have been notified, patch now! Credits: https://t.co/8SkoUfui3j Query: +plugin:KerioControlPlugin https://t.co/XcWWpSNnmy

#Vulnerability #CVE202452875 CVE-2024-52875: KerioControl Firewall Flaw Under Active Exploit, Urgent Patching Required https://t.co/l5HF06lN9U

Hackers exploit KerioControl firewall flaw to steal admin CSRF tokens: https://t.co/tWZzRzkUXJ Hackers are exploiting CVE-2024-52875, a critical CRLF injection vulnerability in GFI KerioControl firewall, allowing 1-click remote code execution (RCE). Affected versions are 9.2.5…

🚨 Urgent Alert for KerioControl Users! Hackers are now exploiting a critical vulnerability (CVE-2024-52875) in your firewall to steal admin CSRF tokens! 🔓 This flaw allows attackers to inject malicious JavaScript, potentially leading to remote code execution. If you're running

Hackers are trying to exploit CVE-2024-52875, a critical CRLF injection vulnerability that leads to 1-click remote code execution (RCE) attacks in GFI KerioControl firewall product. https://t.co/n2WBiTVyhc

Kerio Control CVE-2024-52875 CRLF Injection Attempt | GreyNoise Visualizer #cybersecurity #informationsecurity https://t.co/wLx1LMKyYL

🚨 New CRLF vulnerability in GFI KerioControl (CVE-2024-52875) allows RCE. Patch to 9.4.5 Patch 1 now! Limit interface access & block '/admin' & '/noauth'. Stay vigilant! #CyberSecurity #KerioControl https://t.co/cuIe6kxq1R

🚨 Vulnerability alert! GFI KerioControl firewalls are under attack with CVE-2024-52875, enabling one-click RCE via HTTP response splitting. 24,000 users at risk. Stay vigilant! 🔒 #GFI #NetSecurity #Malware #CybersecurityNews link: https://t.co/aP5cl5yY8M https://t.co/1JYQr3GMm

Hacking Kerio Control via CVE-2024-52875: from CRLF Injection to 1-click RCE https://t.co/AOubdVUGpT

⚠️ Warning: Over 23,800 GFI KerioControl firewalls are vulnerable to a 1-click RCE flaw (CVE-2024-52875) that gives attackers root access. 🛡️ Update to v9.4.5 Patch 1 and audit your firewall access points immediately. 👉 Full details here: https://t.co/dpIuE94zy5

Critical CRLF injection flaw in KerioControl firewall allows hackers to steal admin CSRF tokens & launch 1-click RCE attacks. Patch CVE-2024-52875 ASAP! https://t.co/YJrRQvoPHA

Hacking Kerio Control via CVE-2024-52875: from CRLF Injection to 1-click RCE | Karma(In)Security - https://t.co/U6htMalSnF

🚨Alert🚨 CVE-2024-52875 : Hacking Kerio Control via CVE-2024-52875: from CRLF Injection to 1-click RCE. It affects versions 9.2.5 through 9.4.5. 🔥PoC : https://t.co/QDl7rvHfvP 🧐Deep Dive : https://t.co/pKZTmZKeeO 📊 52.6K+ Services are found on https://t.co/ysWb28Crld yearly.…

Hackers are trying to exploit CVE-2024-52875, a critical CRLF injection vulnerability that leads to 1-click remote code execution (RCE) attacks in GFI KerioControl firewall product. https://t.co/vuAe9RVi0W #rhymtech #thinkcyberthinkrhym #rhymcyberupdates

Hackers are exploiting CVE-2024-52875 in GFI KerioControl, enabling 1-click RCE attacks by manipulating HTTP headers. Users are urged to apply the patch released by GFI Software! 🚨 #RCE #GFIsoftware #USA #CybersecurityNews link: https://t.co/ro0tOrI4gh https://t.co/mVEI5YlFTV

🚨 Critical CRLF Injection Vulnerability in GFI KerioControl Firewall: #CVE-2024-52875 Exploited for 1-Click Remote Code Execution https://t.co/UjBsEpOZ3r

Firewall Fiasco: CVE-2024-52875 Leaves KerioControl Users in Code Red Alert Hot Take: Looks like the GFI KerioControl firewall had a little too much fun with CRLF characters, and now it's giving out 1-click RCE attacks like candy on Halloween. With hackers already on the prowl,

Critical vulnerability alert: Hackers are exploiting a flaw in GFI KerioControl firewall (CVE-2024-52875) that allows for 1-click remote code execution via CSRF token theft. Stay informed to protect your systems. Read more about this security threat here: https://t.co/gzK4q7E8sd.

Hacking Kerio Control via CVE-2024-52875: from CRLF Injection to 1-click RCE https://t.co/pdLZrHBedf

#exploit 1. Hacking Kerio Control via CVE-2024-52875: from CRLF Injection to 1-click RCE https://t.co/7QRChKDd85 2. CVE-2024-38819: https://t.co/kYUpa7vaE7 3. CVE-2024-24942: Path traversal in SwaggerUI-java within JetBrains TeamCity https://t.co/XfznvrBobf

#exploit 1. Hacking Kerio Control via CVE-2024-52875: from CRLF Injection to 1-click RCE https://t.co/BsuXNETOpB 2. CVE-2024-38819: https://t.co/ZRhIuNrI2E 3. CVE-2024-24942: Path traversal in SwaggerUI-java within JetBrains TeamCity https://t.co/lfsjbGMLsf

به تازگی برای محصول Kerio Control که یک UTM می باشد آسیب پذیری با کد شناسایی CVE-2024-52875 و از نوع HTTP Response Splitting منتشر شده است .ورژن های 9.2.5 تا 9.4.5 مربوط به این محصول دارای این آسیب پذیری می باشند. https://t.co/Poz3aKYxT1 https://t.co/CgTgOyvAaU

Hacking Kerio Control via CVE-2024-52875: from CRLF Injection to 1-click RCE | Karma(In)Security https://t.co/fub4BwEaVN

CVE-2024-52875 [KIS-2024-07] GFI Kerio Control <= 9.4.5 Multiple HTTP Response Splitting Vulnerabilities https://t.co/jyCKeSvLKk

Hacking Kerio Control via CVE-2024-52875: from CRLF Injection to 1-click RCE https://t.co/pdLZrHBedf

Hacking Kerio Control via CVE-2024-52875: from CRLF Injection to 1-click RCE https://t.co/peS4Dgy6Pt https://t.co/dCaaRSpN3v