Back to Blog

Posts tagged Emergent Threat Response

Mass Exploitation of Exchange Server Zero-Day CVEs: What You Need to Know

Exposure Management

Mass Exploitation of Exchange Server Zero-Day CVEs: What You Need to Know

Caitlin Condon's avatar

Caitlin Condon

Rapid7’s InsightIDR Enables Detection And Response to Microsoft Exchange Zero-Day

Exposure Management

Rapid7’s InsightIDR Enables Detection And Response to Microsoft Exchange Zero-Day

Andrew Christian's avatar

Andrew Christian

Multiple Unauthenticated Remote Code Control and Execution Vulnerabilities in Multiple Cisco Products

Vulnerabilities and Exploits

Multiple Unauthenticated Remote Code Control and Execution Vulnerabilities in Multiple Cisco Products

boB Rudis's avatar

boB Rudis

VMware vCenter Server CVE-2021-21972 Remote Code Execution Vulnerability: What You Need to Know

Exposure Management

VMware vCenter Server CVE-2021-21972 Remote Code Execution Vulnerability: What You Need to Know

boB Rudis's avatar

boB Rudis

SonicWall SNWLID-2021-0001 Zero-Day and SolarWinds’ 2021 CVE Trifecta: What You Need to Know

Threat Research

SonicWall SNWLID-2021-0001 Zero-Day and SolarWinds’ 2021 CVE Trifecta: What You Need to Know

boB Rudis's avatar

boB Rudis

State-Sponsored Threat Actors Target Security Researchers

Vulnerabilities and Exploits

State-Sponsored Threat Actors Target Security Researchers

boB Rudis's avatar

boB Rudis

SolarWinds SUNBURST Backdoor Supply Chain Attack: What You Need to Know

Vulnerabilities and Exploits

SolarWinds SUNBURST Backdoor Supply Chain Attack: What You Need to Know

boB Rudis's avatar

boB Rudis

VMware ESXi OpenSLP Remote Code Execution Vulnerability (CVE-2020-3992 and CVE-2019-5544): What You Need To Know

Exposure Management

VMware ESXi OpenSLP Remote Code Execution Vulnerability (CVE-2020-3992 and CVE-2019-5544): What You Need To Know

boB Rudis's avatar

boB Rudis

SaltStack Pre-Authenticated Remote Root (CVE-2020-16846 and CVE-2020-25592): What You Need to Know

Threat Research

SaltStack Pre-Authenticated Remote Root (CVE-2020-16846 and CVE-2020-25592): What You Need to Know

boB Rudis's avatar

boB Rudis

Oracle WebLogic Unauthenticated Complete Takeover (CVE-2020-14882/CVE-2020-14750): What You Need to Know

Vulnerabilities and Exploits

Oracle WebLogic Unauthenticated Complete Takeover (CVE-2020-14882/CVE-2020-14750): What You Need to Know

boB Rudis's avatar

boB Rudis

There Goes The Neighborhood: Dealing With CVE-2020-16898 (and CVE-2020-1656) (aka"Bad Neighbor")

Vulnerabilities and Exploits

There Goes The Neighborhood: Dealing With CVE-2020-16898 (and CVE-2020-1656) (aka"Bad Neighbor")

boB Rudis's avatar

boB Rudis

PSA: Increase in RDP Attacks Means It's Time to Mind Your RDPs and Qs

Vulnerabilities and Exploits

PSA: Increase in RDP Attacks Means It's Time to Mind Your RDPs and Qs

boB Rudis's avatar

boB Rudis

HP Device Manager Cavalcade of Critical CVEs (CVE-2020-6925:6927): What You Need to Know

Vulnerabilities and Exploits

HP Device Manager Cavalcade of Critical CVEs (CVE-2020-6925:6927): What You Need to Know

boB Rudis's avatar

boB Rudis

CVE-2020-1472 "Zerologon" Critical Privilege Escalation: What You Need To Know

Vulnerabilities and Exploits

CVE-2020-1472 "Zerologon" Critical Privilege Escalation: What You Need To Know

Caitlin Condon's avatar

Caitlin Condon

Remote Code Execution Risks in Secomea, Moxa, and HMS eWon ICS VPN Vulnerabilities: What You Need to Know

Vulnerabilities and Exploits

Remote Code Execution Risks in Secomea, Moxa, and HMS eWon ICS VPN Vulnerabilities: What You Need to Know

boB Rudis's avatar

boB Rudis

CVE-2020-3452 Cisco ASA / Firepower Read-Only Path Traversal Vulnerability: What You Need to Know

Vulnerabilities and Exploits

CVE-2020-3452 Cisco ASA / Firepower Read-Only Path Traversal Vulnerability: What You Need to Know

boB Rudis's avatar

boB Rudis

Windows DNS Server Remote Code Execution Vulnerability (CVE-2020-1350): What You Need to Know

Threat Research

Windows DNS Server Remote Code Execution Vulnerability (CVE-2020-1350): What You Need to Know

boB Rudis's avatar

boB Rudis

CVE-2020-6287: Critical Vulnerability in SAP NetWeaver Application Server (AS) Java

Vulnerabilities and Exploits

CVE-2020-6287: Critical Vulnerability in SAP NetWeaver Application Server (AS) Java

Rapid7's avatar

Rapid7

CVE-2020-2021 Authentication Bypass in PAN-OS Security Assertion Markup Language (SAML) Authentication Disclosed

Vulnerabilities and Exploits

CVE-2020-2021 Authentication Bypass in PAN-OS Security Assertion Markup Language (SAML) Authentication Disclosed

boB Rudis's avatar

boB Rudis

CVE-2020-12271: Sophos XG Firewall Pre-Auth SQL Injection Vulnerability Remediation Guidance and Exposure Overview

Vulnerabilities and Exploits

CVE-2020-12271: Sophos XG Firewall Pre-Auth SQL Injection Vulnerability Remediation Guidance and Exposure Overview

boB Rudis's avatar

boB Rudis

CVE-2020-0796: Microsoft SMBv3 Remote Code Execution Vulnerability Analysis

Threat Research

CVE-2020-0796: Microsoft SMBv3 Remote Code Execution Vulnerability Analysis

Bryce Abdo's avatar

Bryce Abdo