Posts tagged with: vulnerabilities

As part of ongoing threat research, Palo Alto Networks Unit 42 threat researchers have discovered 28 new vulnerabilities addressed by the Adobe Product Security Incident Response Team (PSIRT) as part of their May Adobe Security Bulletin APSB19-18 and five Foxit Reader vulnerabilities addressed by Foxit Software as part of their recent security update releases. The Adobe vulnerabilities discovered included 19 Critical and 9 Important rated vulnerabilities.

Unit 42 releases new details on two vulnerabilities in Social Warfare (CVE-2019-9978). Both vulnerabilities are present in all versions of Social Warfare prior to 3.5.3: an estimated 42,000 websites are potentially vulnerable. Unit 42 researchers found five compromised sites actively used for hosting malicious exploit code, which allows the attackers to control more websites. In this blog post we provide new details on the root cause of the vulnerabilities, proof of concept code (PoC) to demonstrate the vulnerability, and information on attacks we observed in the wild as well as the scope of vulnerable sites.

As part of Unit 42’s ongoing threat research, we can now disclose that Palo Alto Networks Unit 42 threat researchers have discovered 23 new vulnerabilities addressed by the Adobe Product Security Incident Response Team (PSIRT) as part of their February 2019 APSB19-07 security update release and 2 vulnerabilities addressed by the Microsoft Security Response Center (MSRC) as part of their February 2019 security update release.  Severity ratings ranged from Important to Critical for each of these vulnerabilities.

As part of Unit 42’s ongoing threat research, we can now disclose that Palo Alto Networks Unit 42 researchers have discovered ten vulnerabilities addressed by the Adobe Product Security Incident Response Team (PSIRT) as part of their October 2018 APSB18-30 security update release.   CVE Vulnerability Category Impact Maximum Severity Rating Researcher(s) CVE-2018-12769 Use After

As part of Unit 42’s ongoing threat research, we can now disclose that Palo Alto Networks Unit 42 researchers have discovered eight vulnerabilities.

Read about May’s vulnerability disclosures from Unit 42.

Unit 42 analyzes critical vulnerability CVE-2018-7600, also known as, drupalgeddon2

Unit 42 researchers have discovered a vulnerability addressed by the Adobe Product Security Incident Response Team (PSIRT) as part of their February 2018 security update release.

Learn about the Adobe Flash Player zero-day vulnerability (CVE-2018-4878) and how Traps prevents this threat

Unit 42 examines CVE-2017-11882 and how Traps advanced endpoint protection protects against this threat.

Palo Alto Networks Unit 42 researchers have discovered one vulnerability (CVE-2018-0762) addressed by the Microsoft Security Response Center (MSRC) as part of their January 2018 security update release.

Get an overview of the Meltdown and Spectre vulnerabilities including a risk assessment and calls to action.

Palo Alto Networks Unit 42 vulnerability disclosures: December 2017.

Unit 42 analyses multiple instances of threat actors exploiting critical vulnerability CVE-2017-11882.

Palo Alto Networks Unit 42 researchers uncover 7 new vulnerabilities.