Posts tagged Emergent Threat Response

CVE-2022-41080, CVE-2022-41082: Rapid7 Observed Exploitation of `OWASSRF` in Exchange for RCE

Vulnerabilities and Exploits

CVE-2022-41080, CVE-2022-41082: Rapid7 Observed Exploitation of `OWASSRF` in Exchange for RCE

Glenn Thorpe

CVE-2022-27518: Critical Fix Released for Exploited Citrix ADC, Gateway Vulnerability

Exposure Management

CVE-2022-27518: Critical Fix Released for Exploited Citrix ADC, Gateway Vulnerability

Glenn Thorpe

CVE-2022-42475: Critical Unauthenticated Remote Code Execution Vulnerability in FortiOS; Exploitation Reported

Vulnerabilities and Exploits

CVE-2022-42475: Critical Unauthenticated Remote Code Execution Vulnerability in FortiOS; Exploitation Reported

Glenn Thorpe

CVE-2022-27510: Critical Citrix ADC and Gateway Remote Authentication Bypass Vulnerabilities

Threat Research

CVE-2022-27510: Critical Citrix ADC and Gateway Remote Authentication Bypass Vulnerabilities

Rapid7

Rapid7’s Impact from OpenSSL Buffer Overflow Vulnerabilities (CVE-2022-3786 & CVE-2022-3602)

Vulnerabilities and Exploits

Rapid7’s Impact from OpenSSL Buffer Overflow Vulnerabilities (CVE-2022-3786 & CVE-2022-3602)

Rapid7

Rapid7’s Impact from Apache Commons Text Vulnerability (CVE-2022-42889)

Vulnerabilities and Exploits

Rapid7’s Impact from Apache Commons Text Vulnerability (CVE-2022-42889)

Rapid7

CVE-2022-3786 and CVE-2022-3602: Two High-Severity Buffer Overflow Vulnerabilities in OpenSSL Fixed

Exposure Management

CVE-2022-3786 and CVE-2022-3602: Two High-Severity Buffer Overflow Vulnerabilities in OpenSSL Fixed

Rapid7

CVE-2021-39144: VMware Cloud Foundation Unauthenticated Remote Code Execution

Vulnerabilities and Exploits

CVE-2021-39144: VMware Cloud Foundation Unauthenticated Remote Code Execution

Caitlin Condon

CVE-2022-42889: Keep Calm and Stop Saying "Text4Shell"

Exposure Management

CVE-2022-42889: Keep Calm and Stop Saying "Text4Shell"

Erick Galinkin

CVE-2022-40684: Remote Authentication Bypass Vulnerability in Fortinet Firewalls, Web Proxies

Vulnerabilities and Exploits

CVE-2022-40684: Remote Authentication Bypass Vulnerability in Fortinet Firewalls, Web Proxies

Glenn Thorpe

Exploitation of Unpatched Zero-Day Remote Code Execution Vulnerability in Zimbra Collaboration Suite (CVE-2022-41352)

Exposure Management

Exploitation of Unpatched Zero-Day Remote Code Execution Vulnerability in Zimbra Collaboration Suite (CVE-2022-41352)

Ron Bowes

CVE-2022-41040 and CVE-2022-41082: Unpatched Zero-Day Vulnerabilities in Microsoft Exchange Server

Exposure Management

CVE-2022-41040 and CVE-2022-41082: Unpatched Zero-Day Vulnerabilities in Microsoft Exchange Server

Caitlin Condon

CVE-2022-36804: Easily Exploitable Vulnerability in Atlassian Bitbucket Server and Data Center

Exposure Management

CVE-2022-36804: Easily Exploitable Vulnerability in Atlassian Bitbucket Server and Data Center

Ron Bowes

Active Exploitation of Multiple Vulnerabilities in Zimbra Collaboration Suite

Exposure Management

Active Exploitation of Multiple Vulnerabilities in Zimbra Collaboration Suite

Caitlin Condon

Active Exploitation of Atlassian’s Questions for Confluence App CVE-2022-26138

Exposure Management

Active Exploitation of Atlassian’s Questions for Confluence App CVE-2022-26138

Glenn Thorpe

Exploitation of Mitel MiVoice Connect SA CVE-2022-29499

Exposure Management

Exploitation of Mitel MiVoice Connect SA CVE-2022-29499

Caitlin Condon

CVE-2022-27511: Citrix ADM Remote Device Takeover

Exposure Management

CVE-2022-27511: Citrix ADM Remote Device Takeover

Erick Galinkin

Active Exploitation of Confluence CVE-2022-26134

Exposure Management

Active Exploitation of Confluence CVE-2022-26134

Rapid7

CVE-2022-30190: "Follina" Microsoft Support Diagnostic Tool Vulnerability

Exposure Management

CVE-2022-30190: "Follina" Microsoft Support Diagnostic Tool Vulnerability

Rapid7

CVE-2022-22972: Critical Authentication Bypass in VMware Workspace ONE Access, Identity Manager, and vRealize Automation

Exposure Management

CVE-2022-22972: Critical Authentication Bypass in VMware Workspace ONE Access, Identity Manager, and vRealize Automation

Jake Baines

CVE-2022-30525 (FIXED): Zyxel Firewall Unauthenticated Remote Command Injection

Vulnerabilities and Exploits

CVE-2022-30525 (FIXED): Zyxel Firewall Unauthenticated Remote Command Injection

Jake Baines