SecPod Labs
Security Research
In-depth CVE write-ups, vulnerability analysis, and security intelligence from the SecPod Research team.
CVE Research
Seven new Meltdown and Spectre-type CPU vulnerabilities that affect Intel, AMD, ARM CPUs
Spectre and Meltdown vulnerabilities are one of the most significant known hardware vulnerabilities that affect the modern computer processors. Meltdown and Spectre vulnerabilities were exploited through malicious programs to retrieve secrets stored in the memory of other running programs, sensitive...
CVE Research
How to fully patch CVE-2018-3639, Speculative Store Bypass Vulnerability
January 2018 saw the rise of Meltdown and Spectre vulnerabilities concerning speculative execution side channels. A subclass of speculative execution side-channel vulnerability, termed as Speculative Store Bypass (SSB) was announced by Microsoft in collaboration with Google researchers and was assig...
CVE Research
How to Fully Fix CVE-2017-8529, Microsoft Browser Information Disclosure Vulnerability
Microsoft has re-released a patch for CVE-2017-8529 to fix a print issue related to this vulnerability. The patch is not fully applied unless certain registry keys are set even after installing the respective Operating System patches. This article describes the steps to update registry settings to b...
CVE Research
Saner Release Notes 4.1
Saner 4.1 unveils feature-packed release for Patch Management and encompasses performance optimization in all the tools. It offers patch rollback mechanisms for various Linux and Mac operating systems and supports remediation for non-security patches too.