Attack Research
Filter Content:
Categories:
Tags:
March 21, 2025 | Attack Blogs
Explore CVE-2025-30066 and CVE-2025-24813 with real-world data from Horizon3.ai to assess whether these vulnerabilities are truly critical or overhyped.March 19, 2025 | Vulnerabilities
Is your environment vulnerable to the latest Apache Tomcat exploit? Test now to uncover risks and secure your systems before…
February 19, 2025 | Attack Blogs, Disclosures
Critical Ivanti Endpoint Manager vulnerabilities revealed—learn about CVE exploits and mitigation.
January 13, 2025 | Attack Blogs, Disclosures
SimpleHelp remote support software is susceptible to critical vulnerabilities that could allow full takeover of SimpleHelp servers. Users of SimpleHelp…
December 6, 2024 | Attack Blogs, Attack Paths
Hackers don’t break in, they log in. This has never been more true - as the demand for data increases,…
October 9, 2024 | Attack Blogs, Disclosures
On July 10, 2024, Palo Alto released a security advisory for CVE-2024-5910, a vulnerability which allowed attackers to remotely reset…
September 25, 2024 | Attack Blogs, Disclosures
On August 13, 2024, SolarWinds released a security advisory for Web Help Desk (WHD) that detailed a deserialization remote code…
September 16, 2024 | Attack Blogs
On September 10, 2024, Ivanti released a security advisory for a command injection vulnerability for it's Cloud Service Appliance (CSA)…
September 13, 2024 | Attack Blogs
Update: 2024-09-16 We initially wrote this post in reference to CVE-2024-29847, however this post actually describes CVE-2023-28324. We had incorrectly…
August 23, 2024 | Attack Blogs, Disclosures
This post walks through the vulnerabilities we disclosed affecting Gradio, and our work with Hugging Face to harden the Spaces…
