Endpoint Security / Endpoint Security and Management / Patch Management / Security Research and Intelligence

Alert! Zerologon: Your Windows Domain Controller Can’t Handle Zero Properly (CVE-2020-1472)

Microsoft team patched a critical and exciting vulnerability in the Netlogon Remote Protocol of the Windows server last month. zero logon vulnerability…

4 Comments

September 17, 2020

Category(Default) - Do Not Use This / Security Research and Intelligence

Patch Tuesday: Microsoft Security Bulletin Summary for September 2020

Microsoft Patch Tuesday September 2020 has released September Patch Tuesday security updates with a total release of 129 vulnerabilities, In…

Comments Off on Patch Tuesday: Microsoft Security Bulletin Summary for September 2020

September 9, 2020

Security Research and Intelligence

WordPress File Manager Plugin Under Active Exploitation

File Manager is a popular WordPress plugin that manages files on WordPress sites. It allows a WordPress administrator to edit,…

Comments Off on WordPress File Manager Plugin Under Active Exploitation

September 3, 2020

SecPod News Updates / Security Research and Intelligence

Cisco IOS XR Zero Day Vulnerabilities Being Actively Exploited in the Wild

The high severity zero-day vulnerabilities found in Cisco IOS XR – An Internetwork Operating System (IOS) that shipped with Cisco's…

Comments Off on Cisco IOS XR Zero Day Vulnerabilities Being Actively Exploited in the Wild

September 1, 2020

Security Research and Intelligence

High-Severity Remote Code Execution Vulnerability in Google Chrome

A high-severity 'use-after-free vulnerability tracked as CVE-2020-6492 with a CVSSv3 base score of 8.3 exists in WebGL [Web Graphics Library]…

Comments Off on High-Severity Remote Code Execution Vulnerability in Google Chrome

August 26, 2020

Endpoint Security and Management / Security Research and Intelligence

Critical Jenkins Vulnerability can Cause Memory Corruption and Disclose Sensitive Information

Jenkins, an open-source automation server software released an advisory pertaining to a critical vulnerability present in its application. Jenkins enables…

Comments Off on Critical Jenkins Vulnerability can Cause Memory Corruption and Disclose Sensitive Information

August 19, 2020

Security Research and Intelligence

Patch Tuesday: Microsoft Security Bulletin Summary for August 2020

Microsoft Security Bulletin August 2020 was released, addressing a total number of 120 vulnerabilities, including two Zero-days in the family of…

Comments Off on Patch Tuesday: Microsoft Security Bulletin Summary for August 2020

August 12, 2020

Security Research and Intelligence

High-Risk Vulnerability in TeamViewer Could be Exploited to Crack Users’ Password

The discovery of a high-risk vulnerability was in TeamViewer for Windows. It has a tracking as "CVE-2020-13699", with a CVSS…

Comments Off on High-Risk Vulnerability in TeamViewer Could be Exploited to Crack Users’ Password

August 7, 2020

Security Research and Intelligence

Billions of Linux and Windows Systems at Risk due to Critical GRUB2 Vulnerabilities

A team of cybersecurity researchers found multiple vulnerabilities that affect billions of devices that run on either Windows or Linux.…

Comments Off on Billions of Linux and Windows Systems at Risk due to Critical GRUB2 Vulnerabilities

July 31, 2020

Security Research and Intelligence

Cisco Read-Only Path Traversal Vulnerability (CVE-2020-3452)

Cisco has released a Security Advisory for the actively exploited worldwide CVE-2020-3452. Cisco Read-Only Path Traversal Vulnerability in the web…

2 Comments

July 28, 2020