CVE’s

CVE-2024-21733 Apache Tomcat HTTP Request Smuggling

Our security research team recently discovered a critical “0day” vulnerability which was assigned CVE-2024-21733. The vulnerability was discovered by xer0dayz from Sn1perSecurity LLC and…

xer0dayz Jan 21, 2024 · 2 min read

Attack Surface Management

Confluence RCE via OGNL template injection (CVE-2022-26134)

A critical vulnerability affecting the Atlassian Confluence was disclosed and designated CVE-2022-26134 which allows an un-authenticated attacker to execute arbitrary code on vulnerable servers.…

xer0dayz Jun 5, 2022 · 2 min read

Attack Surface Management

BIG-IP iControl REST RCE (CVE-2022-1388) Detection with Sn1per Professional

A critical vulnerability affecting the F5 BIG-IP devices was disclosed and designated CVE-2022-1388 which allows an un-authenticated attacker to execute arbitrary code on vulnerable…

xer0dayz May 10, 2022 · 1 min read

Attack Surface Management

VMware Workspace ONE Access freemarker SSTI (CVE-2022-22954) Detection with Sn1per Professional

Information regarding a critical 0-day vulnerability affecting the VMware Workspace ONE Access and Identity Manager was disclosed and designated CVE-2022-22954 which allows an un-authenticated…

xer0dayz Apr 14, 2022 · 1 min read

Attack Surface Management

Spring4Shell (CVE-2022-22965) Detection with Sn1per Professional

On March 30, 2022, information regarding a critical 0-day vulnerability affecting the Spring Framework was disclosed and dubbed “Spring4Shell” CVE-2022-22965 which allows an un-authenticated…

xer0dayz Apr 11, 2022 · 1 min read

Stay ahead

Get security intel delivered.

Monthly updates on offensive-security research, new CVEs, and Sn1per product releases. No spam, unsubscribe anytime.

Request a Trial Explore Sn1per Pro