Posts tagged Emergent Threat Response

Exploitation of Unpatched Zero-Day Remote Code Execution Vulnerability in Zimbra Collaboration Suite (CVE-2022-41352)

Exposure Management

Exploitation of Unpatched Zero-Day Remote Code Execution Vulnerability in Zimbra Collaboration Suite (CVE-2022-41352)

Ron Bowes

CVE-2022-41040 and CVE-2022-41082: Unpatched Zero-Day Vulnerabilities in Microsoft Exchange Server

Exposure Management

CVE-2022-41040 and CVE-2022-41082: Unpatched Zero-Day Vulnerabilities in Microsoft Exchange Server

Caitlin Condon

CVE-2022-36804: Easily Exploitable Vulnerability in Atlassian Bitbucket Server and Data Center

Exposure Management

CVE-2022-36804: Easily Exploitable Vulnerability in Atlassian Bitbucket Server and Data Center

Ron Bowes

Active Exploitation of Multiple Vulnerabilities in Zimbra Collaboration Suite

Exposure Management

Active Exploitation of Multiple Vulnerabilities in Zimbra Collaboration Suite

Caitlin Condon

Active Exploitation of Atlassian’s Questions for Confluence App CVE-2022-26138

Exposure Management

Active Exploitation of Atlassian’s Questions for Confluence App CVE-2022-26138

Glenn Thorpe

Exploitation of Mitel MiVoice Connect SA CVE-2022-29499

Exposure Management

Exploitation of Mitel MiVoice Connect SA CVE-2022-29499

Caitlin Condon

CVE-2022-27511: Citrix ADM Remote Device Takeover

Exposure Management

CVE-2022-27511: Citrix ADM Remote Device Takeover

Erick Galinkin

Active Exploitation of Confluence CVE-2022-26134

Exposure Management

Active Exploitation of Confluence CVE-2022-26134

Rapid7

CVE-2022-30190: "Follina" Microsoft Support Diagnostic Tool Vulnerability

Exposure Management

CVE-2022-30190: "Follina" Microsoft Support Diagnostic Tool Vulnerability

Rapid7

CVE-2022-22972: Critical Authentication Bypass in VMware Workspace ONE Access, Identity Manager, and vRealize Automation

Exposure Management

CVE-2022-22972: Critical Authentication Bypass in VMware Workspace ONE Access, Identity Manager, and vRealize Automation

Jake Baines

CVE-2022-30525 (FIXED): Zyxel Firewall Unauthenticated Remote Command Injection

Vulnerabilities and Exploits

CVE-2022-30525 (FIXED): Zyxel Firewall Unauthenticated Remote Command Injection

Jake Baines

Active Exploitation of F5 BIG-IP iControl REST CVE-2022-1388

Exposure Management

Active Exploitation of F5 BIG-IP iControl REST CVE-2022-1388

Ron Bowes

Widespread Exploitation of VMware Workspace ONE Access CVE-2022-22954

Exposure Management

Widespread Exploitation of VMware Workspace ONE Access CVE-2022-22954

Caitlin Condon

Opportunistic Exploitation of WSO2 CVE-2022-29464

Exposure Management

Opportunistic Exploitation of WSO2 CVE-2022-29464

Jake Baines

CVE-2022-28810: ManageEngine ADSelfService Plus Authenticated Command Execution (Fixed)

Exposure Management

CVE-2022-28810: ManageEngine ADSelfService Plus Authenticated Command Execution (Fixed)

Jake Baines

Update on Spring4Shell’s Impact on Rapid7 Solutions and Systems

Vulnerabilities and Exploits

Update on Spring4Shell’s Impact on Rapid7 Solutions and Systems

Rapid7

Spring4Shell: Zero-Day Vulnerability in Spring Framework (CVE-2022-22965)

Exposure Management

Spring4Shell: Zero-Day Vulnerability in Spring Framework (CVE-2022-22965)

Rapid7

CVE-2022-0847: Arbitrary File Overwrite Vulnerability in Linux Kernel

Vulnerabilities and Exploits

CVE-2022-0847: Arbitrary File Overwrite Vulnerability in Linux Kernel

Caitlin Condon

Russia/Ukraine Conflict: What Is Rapid7 Doing to Protect My Organization?

Vulnerabilities and Exploits

Russia/Ukraine Conflict: What Is Rapid7 Doing to Protect My Organization?

Rapid7

Staying Secure in a Global Cyber Conflict

Vulnerabilities and Exploits

Staying Secure in a Global Cyber Conflict

Rapid7

Active Exploitation of VMware Horizon Servers

Vulnerabilities and Exploits

Active Exploitation of VMware Horizon Servers

Glenn Thorpe