SecPod Labs
Security Research
In-depth CVE write-ups, vulnerability analysis, and security intelligence from the SecPod Research team.
CVE Research
Three More Potential Vulnerabilities Found In SolarWinds Software!
Three new security vulnerabilities have recently been identified in various SolarWinds products. Three of the vulnerabilities are severe, and the most critical of them allows remote code execution with high privileges. A vulnerability management tool discovered these critical vulnerabilities. Martin...
CVE Research
SonicWall Zero-Day Vulnerability Is Being Exploited in the Wild
The Sonicwall Zero day Attack. NCC Group recently reported that an active zero-day SonicWall SMA 100 zero-day vulnerability being exploited in the wild. Sonicwall commented that it affects the SMA 100 series (SMA 200, SMA 210, SMA 400, SMA 410, SMA 500v) line of remote access appliances. However, bo...
CVE Research
Heap-Based Buffer Overflow in Sudo Allows Attackers to Gain Root Privileges
The Vulnerability (CVE-2021-3156) exists in Sudo, a powerful utility to run programs with the security privileges of another user. The heap-based buffer overflow could allow an unprivileged local user to gain root privileges without any authentication on the affected systems. A vulnerability managem...
CVE Research
CSRF and Command Runner Command Injection Vulnerabilities in Cisco DNA Center
The Cisco DNA Center software has been reported with a high-severity security vulnerability (CVE-2021-1257) that allows cross-site request forgery (CSRF) attacks. A vulnerability management software can help in detecting this high-severity vulnerability. Cisco credited the vulnerability report to Be...
CVE Research
Multiple Flaws in Orbit Fox WordPress Plugin Allow a Complete Takeover of Sites
The Threat Intelligence team of Wordfence discovered two security vulnerabilities in the Orbit Fox WordPress plugin on November 19, 2020. This plugin was developed by ThemeIsle to extend the theme functionalities with various modules like Social Media Share Buttons & Icons, Uptime Monitoring, Google...
CVE Research
Secret Backdoor to Zyxel Firewall and AP Controllers Could Allow Administrative Access
Niels Teusink of Dutch cybersecurity firm EYE has recently discovered a secret backdoor to Zyxel devices. More than 100,000 Zyxel Firewall and AP Controllers of version 4.60 patch 0 are affected by this vulnerability (CVE-2020-29583). A vulnerability management solution can be helpful here. It is du...
CVE Research
The Rising Need of Unified Endpoint Security and Management
Endpoints are one of the most important assets of an enterprise. According to a study, 68 percent of IT admins said the frequency of attacks in endpoints had increased in 2019. More than half of respondents said their organizations are ineffective at surfacing threats because their endpoint security...
CVE Research
Google Revealed Sickly Patched Windows Zero-Day Vulnerability
Google’s Project Zero team of security analysts has released the details of an improperly patched 0-Day vulnerability. The issue can be tracked as CVE-2020-17008 in Windows print spooler API that attackers could exploit to execute arbitrary code on the affected systems. A reliable vulnerability mana...
CVE Research
SolarWinds Releases Updates to Address Vulnerability Exploited by SUPERNOVA Malware
SolarWinds has released an advisory on 27th December 2020 to address the vulnerability being exploited by SUPERNOVA malware. The vulnerability resides in the SolarWinds Orion API, making it vulnerable to an authentication bypass that can further lead to remote code execution. The vulnerability has b...