Atlassian Confluence Server and Data Center Vulnerability
(By: Frank Wood on September 10, 2021) Executive Summary Atlassian Confluence is a service that allows users within an organization to share, collaborate, and organize projects with each ...
Posts for category: Vulnerabilities Weekly Summaries
(By: William Beard on August 10, 2021) Executive Summary FireEye and Pulse Secure are currently investigating a new vulnerability in the Pulse Connect Secure Virtual Private Network (VPN), ...
(By: William Beard on April 29, 2021) Executive Summary Kaspersky reported that several European industrial enterprises were attacked using the Cring ransomware in early 2021. These ...
Microsoft Exchange Server Zero-Days
(By: William Beard on March 25, 2021) Executive Summary CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, CVE-2021-26865 are four zero-day vulnerabilites that were used recently by the ...
(By: William Beard on February 18, 2021) Introduction In June 2020, SolarWinds, a software development company based out of Austin, Texas, reported a breach in their supply chain for Orion ...
Comcast TV Remote “WarezTheRemote” Vulnerability can Turn into a Listening Device
Introduction Comcast security researcher team disclosed a vulnerability found in the Comcast XR11 TV remote called “WarezTheRemote” allowing an attacker to record audio without the user’s ...
Microsoft Windows “ZeroLogon” Vulnerability Impacts Samba
Introduction Earlier this month Microsoft announced a privilege-escalation vulnerability or “ZeroLogon” with a Common Vulnerability Scoring System (CVSS) score of 10.0 of 10.0 making it ...
CVE-2020-1472 – Windows Microsoft “Zerologon” or “NetLogon” Vulnerability Exploit Released
Introduction On September 11, 2020 Secura, a digital security advisor company discovered and announced the Microsoft “Zerologon” or “NetLogon” vulnerability, with a Common Vulnerability ...
CVE-2020-9992 Apple iOS High-Severity Privilege-Escalation Vulnerability
Introduction On September 16, 2020 International Business Machines (IBM) X-Force reported high-severity vulnerability with a Common Vulnerability Scoring System (CVSS) score of 7.3 out of 10 ...
WordPress File Manager Plugin Affected by a Zero-Day Vulnerability
Introduction On September 01, 2020, a zero-day vulnerability on a WP (WordPress) File Manager plugin that was said to be installed on more than 700,000 sites was found and patched all within the ...