US and Europe Account for 73% of Global Exposed ICS Systems
73% of globally exposed ICS systems are in the US and Europe, with the US leading at 38%.… Continue reading US and Europe Account for 73% of Global Exposed ICS Systems
Category Archives: Vulnerability
how to exploit CVE-2024-36387 in httpd [closed]
As per the NVD description and the httpd official website, the vulnerability states:
"Serving WebSocket protocol upgrades over a HTTP/2 connection could
result in a Null Pointer dereference, leading to a crash of the server
process, … Continue reading how to exploit CVE-2024-36387 in httpd [closed]
CWE top 25 most dangerous software weaknesses
The CWE list of the 25 most dangerous software weaknesses demonstrates the currently most common and impactful software flaws. Identifying the root causes of these vulnerabilities provides insights to shape investments, policies, and practices that pro… Continue reading CWE top 25 most dangerous software weaknesses
Critical Windows Kerberos Flaw Exposes Millions of Servers to Attack
A critical vulnerability in the Windows Kerberos authentication protocol poses a significant risk to millions of servers. Microsoft… Continue reading Critical Windows Kerberos Flaw Exposes Millions of Servers to Attack
Chinese Salt Typhoon Hacked T-Mobile in US Telecom Breach Spree
Another day, another hack at T-Mobile! This time, Chinese state-sponsored group Salt Typhoon hacked T-Mobile, targeting US telecoms… Continue reading Chinese Salt Typhoon Hacked T-Mobile in US Telecom Breach Spree
Mozilla 0Din Warns of ChatGPT Sandbox Flaws Enabling Python Execution
Mozilla’s 0Din uncovers critical flaws in ChatGPT’s sandbox, allowing Python code execution and access to internal configurations. OpenAI… Continue reading Mozilla 0Din Warns of ChatGPT Sandbox Flaws Enabling Python Execution
Cybersecurity Flaws in US Drinking Water Systems Put 26 Million at Risk
The U.S. Environmental Protection Agency (EPA) Report Exposes Cybersecurity Risks in US Water Systems: Vulnerabilities in Critical Drinking… Continue reading Cybersecurity Flaws in US Drinking Water Systems Put 26 Million at Risk
8.8 Rated PostgreSQL Vulnerability Puts Databases at Risk
Cybersecurity researchers at Varonis have identified a serious security vulnerability in PostgreSQL that could lead to data breaches… Continue reading 8.8 Rated PostgreSQL Vulnerability Puts Databases at Risk
Microsoft’s November Patch Tuesday Fixes 91 Vulnerabilities, 4 Zero-Days
Microsoft’s November 2024 Patch Tuesday update fixes 91 security vulnerabilities, including four zero-day vulnerabilities. Critical fixes address actively… Continue reading Microsoft’s November Patch Tuesday Fixes 91 Vulnerabilities, 4 Zero-Days
Which external vulnerabilities remain for a web server secured with mTLS?
Scenario:
A web server with a web app for remote staff.
The web server is behind a reverse proxy (traefik)
The web server has a host based firewall configured to allow connections only from the proxy on the designated port. Those connectio… Continue reading Which external vulnerabilities remain for a web server secured with mTLS?