Security Research

CVE Research

Critical Vulnerabilities in SAP Adaptive Server Enterprise (ASE)

The SAP Adaptive Server Enterprise (ASE), previously known as Sybase SQL Server, is a high-performance relational database server that can be hosted on-premise or cloud structure that is used by over 30,000 organizations worldwide, including banking institutions, healthcare companies, security firms...

CVE Research

Are Your Organization’s IT Assets ‘Really’ Under Control?

Every organization has its own IT Assets and IT asset control can be done by the internal team by using a vulnerability management tool. They might range from desktops, laptops, mobile devices to switches, hubs, routers, the list does not stop here. As organizations expand their business, it leads t...

CVE Research

Beware : NXNSAttack on DNS Servers Could Bring Down Major Sections of the Internet

A new vulnerability in the architecture of the global Domain Name System (DNS) was brought to light. By a team of Israeli researchers. The team also published a paper highlighting how this flaw could be leveraged with an attack. Dubbed as NXNSAttack to bring down target websites. A vulnerability man...

CVE Research

6 Common Myths And Misbeliefs About Patching

Patching is one of the best security practices followed to fix software vulnerabilities. Studies show that much serious ransomware like WannaCry could have been easily prevented if software updates were patched on time. For cyber attackers, un-updated software is always a welcome sign to intrude the...

CVE Research

Adobe Critical Security Updates May 2020

Adobe had released security updates providing fixes for 16 critical vulnerabilities in Adobe Acrobat, Reader, and Adobe DNG Software Development Kit. A total of 36 security bugs were patched in this release. The critical vulnerabilities could allow the attackers to execute arbitrary code or bypass t...

CVE Research

Cisco Releases Security Updates for Multiple Products

Cisco has rolled out May 2020 security patches for eleven different products using auto patching. Advisories released for Cisco Adaptive Security Appliance Software and Cisco Firepower Threat Defense Software are considered important. The most severe of these vulnerabilities could enable an attacker...

CVE Research

SaltStack Salt Critical Vulnerabilities Under Active Exploitation

SaltStack Salt is a very popular open-source remote task and configuration management framework widely used in data centers and cloud environments. Two critical security flaws have been discovered by a vulnerability management tool. In Salt that can allow an attacker to execute arbitrary commands as...

CVE Research

Adobe Releases Emergency Critical Security Patches- April 2020 Updates

CVE Research

Microsoft out-of-band Security Updates for Office and Paint 3D

Microsoft released an out-of-band security update addressing multiple vulnerabilities that plug remote code execution vulnerabilities in an Autodesk FBX library incorporated into Microsoft Office, Office 365 ProPlus and Paint 3D applications. A vulnerability management tool can detect multiple vulne...