SecPod Labs
Security Research
In-depth CVE write-ups, vulnerability analysis, and security intelligence from the SecPod Research team.
CVE Research
Adobe Critical Security Updates June 2024
In June 2024, Adobe released security updates addressing 13 critical vulnerabilities in software like Experience Manager, Adobe Commerce, Photoshop, etc. In total, 168 security flaws were patched using a patch manager. These vulnerabilities could lead to various issues, such as arbitrary code execut...
CVE Research
Control+Alt+Defeat Vulnerabilities in 5 mins
The fight against vulnerabilities and threats is constant. The real race is between cyber-attackers and organizations constantly trying to stay ahead. Attackers give their all to penetrate enterprises’ cyber defense while enterprises defend their IT infrastructure.
CVE Research
ARM Mali GPU Drivers are prey to a Wildly exploited Zero-Day flaw!
The leading Processor Technology provider, ARM has announced a zero-day vulnerability in its Open Source Kernel Drivers: Mali GPU Drivers on 7th June 2024. This vulnerability is tracked as CVE-2024-4610 and is said to be exploited in the wild by attackers. Mali GPU Drivers, the widely used ARM GPU D...
CVE Research
RCE Flaw Discovered in PHP’s Windows Versions
The well-known open-source scripting language PHP (Hypertext Preprocessor) just had a critical RCE flaw patched and disclosed. Found and reported by security researcher Orange Tsai, CVE-2024-4577 affects the PHP-CGI module in the Windows version and impacts all releases post 5.x.
CVE Research
Microsoft’s May 2024 Patch Tuesday: Microsoft patches three zero-days under active exploit and 61 flaws.
Microsoft released its May edition of Patch Tuesday, in which 61 vulnerabilities and three actively exploited zero days were addressed. Of the 61 vulnerabilities, 59 fall under the Important severity, while one each in the Moderate and Critical severity.
