SecPod Labs
Security Research
In-depth CVE write-ups, vulnerability analysis, and security intelligence from the SecPod Research team.
CVE Research
Cisco Issues Urgent Warning on Exploited IOS Zero-Day Vulnerability
The disclosure of a high-severity zero-day vulnerability in Cisco IOS and IOS XE Software exposes a critical weakness in the Simple Network Management Protocol (SNMP) subsystem. Tracked as CVE-2025-20352, the flaw is already being actively exploited in the wild, placing countless organizations at im...
Remediation Rollback in Saner Cloud Makes Prevention Practical
CVE Research
Remediation Rollback in Saner Cloud Makes Prevention Practical
Security teams move fast when they know a change is reversible. Remediation Rollback in SecPod’s Saner Cloud gives your team that safety net, so you can fix risky configurations without hesitation, keep production steady, and block attack paths before they’re exploited. Pair that with continuous vis...
CVE Research
Automating Endpoint Management: Best Practices for IT Teams
Every organization in the world relies on laptops, mobile devices, servers, and IoT equipment. Each device provides business applications and but also might hold sensitive data, which can pose a potential risk if left unmanaged. Manually checking and managing these endpoints is practically impossibl...
CVE Research
From License to Root: Critical Flaw in Fortra GoAnywhere MFT
A critical vulnerability has been identified in Fortra’s GoAnywhere Managed File Transfer (MFT) platform, posing a significant risk to organizations that rely on this software for secure file exchange. The flaw, identified as CVE-2025-10035, has been assigned a CVSS score of 10.0, the highest possib...
CVE Research
Firewall on Fire: Critical CVE-2025-9242 Hits WatchGuard Firebox
WatchGuard has issued urgent security updates to address a critical vulnerability, CVE-2025-9242, affecting its Firebox firewalls. This high-severity flaw could allow a remote, unauthenticated attacker to execute arbitrary code on vulnerable devices, potentially leading to complete system compromise...
CVE Research
How the TP-Link 0-Day Bypasses ASLR: A Technical Post-Mortem
A critical zero-day remote code execution (RCE) vulnerability, identified as CVE-2025-9961, with CVSS and EPSS scores of 8.6 and 0.10% respectively, has been discovered in TP-Link routers. Security researchers have released a proof-of-concept (PoC) exploit, demonstrating how attackers can bypass Add...
CVE Research
Worm in the Code: npm Supply Chain Attack Compromises 40+ Packages
A major supply chain attack has been uncovered in the npm ecosystem, where more than 40 widely used packages were found compromised. The campaign, powered by a self-replicating malware dubbed “Shai-Hulud”, is actively spreading and exfiltrating sensitive credentials. Developers and organizations usi...
CVE Research
Deserialization Derailment: Dassault’s DELMIA Flaw Goes Live
DELMIA Apriso is utilized in production processes for digitalization and monitoring, with widespread deployment in automotive, aerospace, electronics, high-tech, and industrial machinery divisions. It supports various functions, including production scheduling, quality management, resource allocatio...