Horizon3.ai
Horizon3.ai

Attack Research

Filters

Tags
Reset

Showing 37–42 of 76 results

CVE-2023-39143: PaperCut Path Traversal/File Upload RCE Vulnerability

August 4, 2023 | ,

Summary CVE-2023-39143 is a critical vulnerability we disclosed to PaperCut that affects the widely used PaperCut NG/MF print management software. It affects PaperCut NG/MF running on Windows, prior to version 22.1.3. If you are a user of PaperCut on Windows, and have it exposed to the Internet, we recommend you check out the July 2023 PaperCut security bulletin and immediately...
Read More

MOVEit Transfer CVE-2023-34362 Deep Dive and Indicators of Compromise

June 9, 2023 |

On May 31, 2023, Progress released a security advisory for their MOVEit Transfer application which detailed a SQL injection leading to remote code execution and urged customers to update to the latest version. The vulnerability, CVE-2023-34362, at the time of release was believed to have been exploited in-the-wild as a 0-day dating back at least 30 days. Soon after publication,...
Read More

CVE-2023-27524: Insecure Default Configuration in Apache Superset Leads to Remote Code Execution

April 25, 2023 | ,

Apache Superset is an open source data visualization and exploration tool. It has over 50K stars on GitHub, and there are more than 3000 instances of it exposed to the Internet. In our research, we found that a substantial portion of these servers – at least 2000 (two-thirds of all servers) – are running with a dangerous default configuration. As...
Read More

How can NodeZero help you?

Let our experts walk you through a demonstration of NodeZero, so you can see how to put it to work for your company.

Schedule a Demo