Security Research

CVE Research

Zyxel Users Beware: Critical OS Command Injection Flaw Threatens Routers

Zyxel, a communications company, has released an advisory warning users of a critical input validation vulnerability impacting many of its router models. CVE-2024-7261, with a CVSS score of 9.8, could potentially allow unauthenticated attackers to perform OS command injection.

CVE Research

Risk vs. Vulnerability Assessment: Should we Compare Them?

With so much information/ data stored digitally or on the cloud, the risk it poses is unavoidable. Cyberattacks are rising, and attackers are getting sophisticated while planning an attack. The first step you take to overcome these attacks is to implement a strategy for risk reduction.

CVE Research

What is Vulnerability Debt?

We have a love-hate relationship with debt. But why am I talking about debt in a vulnerability management blog? Vulnerability debt is a new concept that has gained traction recently, and it is a great way to understand the impact vulnerabilities and security risks have on your network. So, lets dig ...

CVE Research

Everything You Need to Know about PCI Vulnerability Management

Running a business isn’t easy. You have a lot of things to keep in mind. But on top of the list should be safeguarding your customer’s data. And if your business handles credit card information, you must have heard of PCI and PCI vulnerability management.

CVE Research

Google Chrome 128 Update Resolves Critical Security Vulnerabilities!

Google has released Chrome 128, a significant update that addresses multiple high-severity vulnerabilities that could potentially impact the security and integrity of the widely used web browser. This update is crucial for users protect their systems against emerging threats.

CVE Research

Vulnerability Management Workflow

Vulnerability Management, the name itself says it all. We all know vulnerability management is crucial for companies and individuals to follow. But why is it important and what is the workflow each time we try to Kill a vulnerability? Everything we do, either has a ‘Yes’ or a ‘No’, right? The proces...

CVE Research

Microsoft’s August 2024 Patch Tuesday: Microsoft fixes 10 zero days; releases fix for 90 flaws.

CVE Research

Patch Management vs Vulnerability Management: Understand the Difference

To keep up with increasingly cunning hackers and safeguard your network, you need to detect risks and patch them. So, to protect your network, you need vulnerability and patch management to do the dirty work. Vulnerability management tool detects security risks, and patch management tool remediates ...

CVE Research

FreeBSD Issues Critical Patch for Severe OpenSSH Vulnerability

The maintainers of the FreeBSD Project have issued an urgent security update to address a high-severity vulnerability in OpenSSH. This flaw could allow attackers to remotely execute arbitrary code with elevated privileges, posing a serious risk to systems running the affected versions of FreeBSD.