SecPod Labs
Security Research
In-depth CVE write-ups, vulnerability analysis, and security intelligence from the SecPod Research team.
CVE Research
What are the Most Critical Vulnerabilities of 2021?
2021 was yet another year of IT security chaos and uncertainties. The year saw a drastic acceptance of the hybrid work model among various organizations across the globe. Whatever your working model is, on-premises, remote, or hybrid, one crucial process will remain the same in your security strateg...
CVE Research
Google Fixed Actively Exploited Chrome Zero-Day Vulnerability-Patch Now!
A high-severity zero-day flaw tracked as CVE-2022-0609 in Google Chrome is exploited in attacks. It is finally resolving with the release of Chrome 98.0.4758.102 emergency update for Windows, Mac, and Linux. This is the first zero-day vulnerability Google has patched for Chrome this year, but it pro...
CVE Research
Vulnerability Management Plans to Build Unbreachable Defense
Do you worry about the security of your organization? Do you think it is too difficult to create and implement the right vulnerability management plan that ticks all the right boxes by using the right vulnerability management tool?
CVE Research
What Vulnerability Management Metrics Could Make or Break Your Security Program
Do you believe you’re dealing with vulnerabilities correctly? When you run a scan and report a few new vulnerabilities that are unaddressed for longer than 90 days, you’ll try to prioritize them rather than new ones. What if those old vulnerabilities don’t pose more risk than the new vulnerabilities...
CVE Research
Why IT Security Experts Should Consider Continuous and Automated Vulnerability Remediation
The impact of the pandemic has brought a multitude of security challenges for the IT security team and chief information security officers. One of the main challenges includes remediation of security flaws in a complex IT network and patch vulnerabilities using a patch management tool whenever neces...
CVE Research
How Many Checks Does Your Vulnerability Management Program Need?
A vulnerability database is a collection of information about security checks and patches. An efficient vulnerability management solution needs a comprehensive vulnerability database with many security checks that can precisely help discover maximum vulnerabilities.
CVE Research
CISA Warns To Patch Critical ICMAD Vulnerabilities In SAP Internet Communication Manager(ICM)
On February Patch Tuesday, SAP has released security updates to patch vulnerabilities affecting multiple SAP products, including critical vulnerabilities affecting SAP applications using Internet Communication Manager (ICM). The ICM is one of the most important components of a SAP NetWeaver applicat...
CVE Research
Microsoft February 2022 Patch Tuesday Addresses 57 Vulnerabilities Including a Zero-Day.
Microsoft has released February Patch Tuesday security updates with a total of 57 detected Vulnerabilities, including zero-day and 0 critical rated vulnerabilities, using a vulnerability management tool. Hence the products covered in the Microsoft February 2022 patch Tuesday security update include ...
CVE Research
Apple Has Addressed A Zero-Day Vulnerability Which Is Being Actively Exploited In The Wild
This year, Apple released security updates for their third zero-day vulnerability. Apple addresses a zero-day vulnerability in its Feb 2022 update. However, the affected software processes maliciously crafted web content, leading to arbitrary code execution in WebKit, which is a component included i...