SecPod Labs
Security Research
In-depth CVE write-ups, vulnerability analysis, and security intelligence from the SecPod Research team.
CVE Research
CSRF and Command Runner Command Injection Vulnerabilities in Cisco DNA Center
The Cisco DNA Center software has been reported with a high-severity security vulnerability (CVE-2021-1257) that allows cross-site request forgery (CSRF) attacks. A vulnerability management software can help in detecting this high-severity vulnerability. Cisco credited the vulnerability report to Be...
CVE Research
Multiple Flaws in Orbit Fox WordPress Plugin Allow a Complete Takeover of Sites
The Threat Intelligence team of Wordfence discovered two security vulnerabilities in the Orbit Fox WordPress plugin on November 19, 2020. This plugin was developed by ThemeIsle to extend the theme functionalities with various modules like Social Media Share Buttons & Icons, Uptime Monitoring, Google...
CVE Research
Secret Backdoor to Zyxel Firewall and AP Controllers Could Allow Administrative Access
Niels Teusink of Dutch cybersecurity firm EYE has recently discovered a secret backdoor to Zyxel devices. More than 100,000 Zyxel Firewall and AP Controllers of version 4.60 patch 0 are affected by this vulnerability (CVE-2020-29583). A vulnerability management solution can be helpful here. It is du...
CVE Research
The Rising Need of Unified Endpoint Security and Management
Endpoints are one of the most important assets of an enterprise. According to a study, 68 percent of IT admins said the frequency of attacks in endpoints had increased in 2019. More than half of respondents said their organizations are ineffective at surfacing threats because their endpoint security...
CVE Research
Google Revealed Sickly Patched Windows Zero-Day Vulnerability
Google’s Project Zero team of security analysts has released the details of an improperly patched 0-Day vulnerability. The issue can be tracked as CVE-2020-17008 in Windows print spooler API that attackers could exploit to execute arbitrary code on the affected systems. A reliable vulnerability mana...
CVE Research
SolarWinds Releases Updates to Address Vulnerability Exploited by SUPERNOVA Malware
SolarWinds has released an advisory on 27th December 2020 to address the vulnerability being exploited by SUPERNOVA malware. The vulnerability resides in the SolarWinds Orion API, making it vulnerable to an authentication bypass that can further lead to remote code execution. The vulnerability has b...
CVE Research
WordPress Plugin Contact Form 7 Critical File Upload Vulnerability (CVE-2020-35489)
Contact Form 7 is a popular WordPress plugin that is used to create, customize, and manage multiple contact forms on WordPress sites. A critical file upload vulnerability (CVE-2020-35489) has an identity in the WordPress Contact Form 7 plugin, allowing an attacker to execute arbitrary code on affect...
CVE Research
Critical Zero-Day in HPE Systems Insight Manager Revealed
Hewlett Packard Enterprise recently revealed a security flaw in its Systems Insight Manager software (Vulnerability in HPE Systems). This zero-day bug resides in the recent versions of the server software and is reportedly unpatched. Servers running the affected software are liable to Remote Code Ex...
CVE Research
SolarWinds SUNBURST Backdoor Compromises Multiple Global Victims
Highly evasive hackers breached Orion IT monitoring and management software of SolarWinds and deployed malware updates to it. It is known as solarwinds sunburst. As a result, attackers have gained access to government, consulting, technology, telecom, and extractive entities in North America, Europe...