SecPod

Learn Search

Search across all Learn content

SecPod Labs

Security Research

In-depth CVE write-ups, vulnerability analysis, and security intelligence from the SecPod Research team.

Featured Article

Open Citrix Critical Update: NetScaler Vulnerabilities Fixed Enabling File Leakage and Service Disruption
Citrix Critical Update: NetScaler Vulnerabilities Fixed Enabling File Leakage and Service Disruption

CVE Research

Citrix Critical Update: NetScaler Vulnerabilities Fixed Enabling File Leakage and Service Disruption

Citrix has issued critical fixes for six NetScaler vulnerabilities that could lead to arbitrary file reads, memory disclosure, and denial-of-service attacks. As internet-facing appliances, NetScaler deployments remain attractive targets for threat actors seeking initial access to enterprise networks.

Jul 02, 2026

Open Breaking Down CVE-2026-43503: Dirty Clone Linux Kernel Privilege Escalation Vulnerability

Breaking Down CVE-2026-43503: Dirty Clone Linux Kernel Privilege Escalation Vulnerability

CVE Research

Breaking Down CVE-2026-43503: Dirty Clone Linux Kernel Privilege Escalation Vulnerability

Jun 29, 2026

Open CVE-2026-31431: Hardening Linux Against Copy Fail - Patching, Containment, and Defense-in-Depth

CVE-2026-31431: Hardening Linux Against Copy Fail - Patching, Containment, and Defense-in-Depth

CVE Research

CVE-2026-31431: Hardening Linux Against Copy Fail - Patching, Containment, and Defense-in-Depth

Jun 29, 2026

Open FortiBleed: The Leak That Turned 73,000 Firewalls Into a Targeting Database
FortiBleed: The Leak That Turned 73,000 Firewalls Into a Targeting Database

CVE Research

FortiBleed: The Leak That Turned 73,000 Firewalls Into a Targeting Database

FortiBleed is a credential-exposure campaign targeting Fortinet firewalls, with over 86,000 devices compromised across 194 countries. No patch exists – attackers crack stolen password hashes and turn devices into listening posts for credential theft.

Jun 25, 2026

Open CVE-2026-31431: From 732 Bytes to Root - Anatomy of a Modern Linux Privilege Escalation

CVE-2026-31431: From 732 Bytes to Root - Anatomy of a Modern Linux Privilege Escalation

CVE Research

CVE-2026-31431: From 732 Bytes to Root - Anatomy of a Modern Linux Privilege Escalation

Jun 24, 2026

Open CVE-2026-31431: The Nine-Year Kernel Bug Hiding in Plain Sight

CVE-2026-31431: The Nine-Year Kernel Bug Hiding in Plain Sight

CVE Research

CVE-2026-31431: The Nine-Year Kernel Bug Hiding in Plain Sight

Jun 23, 2026

Open Squidbleed: A 29-Year-Old Squid Proxy Flaw That Leaks Cleartext HTTP Requests
Squidbleed: A 29-Year-Old Squid Proxy Flaw That Leaks Cleartext HTTP Requests

CVE Research

Squidbleed: A 29-Year-Old Squid Proxy Flaw That Leaks Cleartext HTTP Requests

Jun 23, 2026

Open AryStinger Malware Leverages 4,300+ Legacy Routers to Establish Persistent Spy Infrastructure
AryStinger Malware Leverages 4,300+ Legacy Routers to Establish Persistent Spy Infrastructure

CVE Research

AryStinger Malware Leverages 4,300+ Legacy Routers to Establish Persistent Spy Infrastructure

AryStinger exploits decade-old vulnerabilities in unpatched routers and NAS devices to silently assemble a 4,300-node reconnaissance network, conducting distributed scanning and traffic interception while masking all activity behind residential IP addresses.

Jun 23, 2026