SecPod Labs
Security Research
In-depth CVE write-ups, vulnerability analysis, and security intelligence from the SecPod Research team.
CVE Research
Scan Vulnerabilities In Less Than 5 Minutes! Faster Than Your Coffee Brews.
Who doesn’t love the smell of freshly brewed coffee? There is no better aroma that keeps me up than the smell of freshly brewed coffee. After pondering over my day-to-day tasks, a cup of coffee brings my sanity back and keeps my energy up. This 5-minute brewing time allows me to catch up with my col...
CVE Research
Adobe Critical Security Updates October 2021
Adobe has finally released October 2021 security updates providing fixes for 66 critical vulnerabilities in Adobe After Effects, Premiere Pro, Photoshop, etc. A total of 92 security vulnerabilities have been finally patched in this release. However most of these detected vulnerabilities could lead t...
CVE Research
Pile of Vulnerabilities Haunting You? Learn How Brad & Smith Mastered Vulnerability Management Use Cases
Brad and Smith are security administrators of an enterprise with 2000 devices. One of their prime responsibilities is to manage vulnerabilities in their network. With only two people at work and 2000 devices spread across multiple remote locations, both Brad and Smith had a hard time. Brad takes up ...
CVE Research
Discourse Patches Critical Remote Code Execution Vulnerability
Discourse is one of the most popular open-source community forums and mailing list management software applications. A critical code execution vulnerability (CVE-2021-41163) identifies in Discourse, allows an attacker to execute arbitrary code on the affected system. This vulnerability recognizes wi...
CVE Research
What Is The Difference Between Vulnerability Management And Risk-Based Vulnerability Management?
Vulnerabilities are increasing rapidly, and attackers are on the lookout for more sophisticated ways to exploit an attack. To add to this, the security landscape is also changing, continuously adding more burden to the shoulders of security teams. With rising vulnerabilities and evolving security la...
CVE Research
Oracle Critical Security Updates October 2021
Oracle Critical Updates October 2021 has finally released 419 new security patches for various product families, including Oracle Mysql, Oracle Java SE, Oracle Essbase, Database server, Oracle Golden Gate, etc. However, This advisory covers multiple products which are prone to many vulnerabilities. ...
CVE Research
How Effectively are you Handling Hidden Vulnerabilities?
Addressing vulnerabilities and fixing them is easier said than done. What notion do you get when you hear about vulnerability management? All a vulnerability management system does is scan, discover, and remediate vulnerabilities. Only the security teams know how winding and bumpy the road is betwee...
CVE Research
Microsoft’s October 2021 Patch Tuesday Squashes 4 Zero-days and a Total of 81 Vulnerabilities
Microsoft has released October Patch Tuesday security updates with a total of 81 vulnerabilities, which include Four Zero-Days, Three CVEs rated as critical, and 70 rated as important by a vulnerability scanning tool. The products covered in October’s security update include Microsoft Office, Window...
CVE Research
Why Is It Important To Manage Vulnerabilities Beyond CVEs?
CVE stands for Common Vulnerabilities and Exposures. It is the database of publicly disclosed information on security issues. All organizations use CVEs to identify and track the number of vulnerabilities. However, not all the vulnerabilities discovered have a CVE number. For instance, the CVE datab...