ProxyNotShell: New vulnerabilities in Microsoft Exchange Server (CVE-2022-41040, CVE-2022-41082) (update)
Update January 2, 2023 Microsoft has released Nov. 8, 2022 security updates for Exchange Server 2013, 2016 and 2019. These protect against CVE-2022-41040 and CVE-2022-41082.
Ivanti Endpoint Manager Mobile (EPMM) / MobileIron Core vulnerabilities (CVE-2023-35078)
Threat description On July 26, 2023, the NFIR TI Watchtower team gathered threat assessment information on the vulnerability with CVE number CVE-2023-35078.Specifically, on the threat
Citrix ADC & NetScaler Gateway vulnerabilities (CVE-2023-3519)
Threat description On July 18, 2023, the NFIR TI Watchtower team gathered threat assessment information on the vulnerability with CVE number CVE-2023-3519.Specifically on the threat
ShareFile Remote Code Execution (CVE-2023-24489)
Threat description On July 17, 2023 the NFIR TI Watchtower team gathered additional threat assessment information on the vulnerability with CVE number CVE-2023-24489. This is
Fortinet Fortigate VPN-SSL vulnerabilities (CVE-2023-27997)
Description CVE-2023-27997 On June 12, 2023, Fortiguard Labs said it had fixed multiple vulnerabilities in multiple versions of FortiOS. One of these vulnerabilities, CVE-2023-27997 – also known
Supply Chain Attack on 3CX: digital attack on popular enterprise VoIP software. (CVE-2023-29059)
On March 30, Cybersecurity firm CrowdStrike said it had observed a digital attack on users of the software package 3CX. This attack is also called
ProxyNotShell: New vulnerabilities in Microsoft Exchange Server (CVE-2022-41040, CVE-2022-41082) (update)
Update January 2, 2023 Microsoft has released Nov. 8, 2022 security updates for Exchange Server 2013, 2016 and 2019. These protect against CVE-2022-41040 and CVE-2022-41082.
NFIR Threat Intelligence Report on critical vulnerability in Citrix
Citrix Applicaton Delivery Controller, or ADC (formerly NetScaler ADC) is a solution for application delivery and load balancing. It is used to facilitate applications within enterprise environments. Citrix Gateway is an on-premise solution that facilitates remote access and provides access to apps and resources.
NFIR Threat Intelligence Report – Critical vulnerabilities in OpenSSL software library
To help you make the right decisions, we have developed an OpenSSL flow chart for you. This flow chart will help you make the right choices with the information that is currently available. Given developments, it is advisable to check this page and our Threat Intelligence Report regularly. This is because they are updated as soon as new information is available.
New vulnerabilities in Apache Commons Text (CVE-2022-42889) – Text2Shell
On Oct. 18/19, 2022, a blog published by GHSL1 researcher Alvaro Muñoz (@pwntester) found vulnerabilities in Apache Commons Text. A bug in the Apache Commons
NFIR Threat Intelligence Report on vulnerability in Confluence (CVE-2022-26134)
On June 2 and 3, 2022, information was published about a vulnerability in Atlassian’s Confluence products that could allow attackers to gain full access to
Threat Intelligence Report regarding BIG-IP F5 Firewall vulnerability (CVE-2022-1388)
On May 9, 2022, additional information was published about a vulnerability in the iControl REST API of F5’s BIG-IP firewall products that could allow attackers