Attack Blogs
Filter Content:
Categories:
Tags:
October 19, 2023 | Attack Blogs
On Monday, 16 October, Cisco reported a critical zero-day vulnerability in the web UI feature of its IOS XE software…September 6, 2023 | Attack Blogs, Disclosures
Apache Superset is a popular open source data exploration and visualization tool. In a previous post, we disclosed a vulnerability,…
August 24, 2023 | Attack Blogs
Introduction Ivanti has recently published an advisory for CVE-2023-38035. The vulnerability has been added to CISA KEV and is described…August 10, 2023 | Attack Blogs
Introduction In December 2022, we competed at our first pwn2own. We were able to successfully exploit the Lexmark MC3224i using…August 4, 2023 | Attack Blogs, Disclosures
Summary CVE-2023-39143 is a critical vulnerability we disclosed to PaperCut that affects the widely used PaperCut NG/MF print management software.…
June 9, 2023 | Attack Blogs
On May 31, 2023, Progress released a security advisory for their MOVEit Transfer application which detailed a SQL injection leading…April 25, 2023 | Attack Blogs, Disclosures
Apache Superset is an open source data visualization and exploration tool. It has over 50K stars on GitHub, and there…
April 24, 2023 | Attack Blogs
Overview On 8 March 2023, PaperCut released new versions for their enterprise print management software, which included patches for two…
March 23, 2023 | Attack Blogs
Introduction Veeam has recently released an advisory for CVE-2023-27532 for Veeam Backup and Replication which allows an unauthenticated user with…February 25, 2023 | Attack Blogs
On September 13, 2022, a new Kerberos vulnerability was published on the Microsoft Security Response Center's security site. It's labeled…
