0day Archives - Attack Surface Management Solutions

All posts tagged: 0day

Attack Surface Management Solutions | Sn1perSecurity LLC

CVE-2024-21733 Apache Tomcat HTTP Request Smuggling

Our security research team recently discovered a critical “0day” vulnerability which was assigned CVE-2024-21733. The vulnerability was discovered by xer0dayz from Sn1perSecurity LLC and allows attackers to force a victim’s browser to de-synchronize its connection with websites hosted on top of Apache Tomcat, causing sensitive data to be smuggled from the server and/or client connections. In some cases, this can leak sensitive data such as clear-text credentials.

Severity: CRITICAL | Exploit Available: Yes | Exploitability: Easy | Remotely Exploitable: Yes

(more…)

January 21, 2024 xer0dayz Attack Surface Management, Bug Bounties, CVE's, News, Penetration Testing, Threat Intelligence No comments yet

Sn1per Professional Continuous Attack Surface Testing

Attack Surface Management With Sn1per Professional

External Attack Surface Management (EASM) has become a crucial function for every organization to gain visibility of their perimeter security. Having the right tools and processes in place is vital to detecting new vulnerabilities before attackers do. In this blog post, we will outline the basic steps for discovering the attack surface with Sn1per Professional.

(more…)

February 8, 2021 xer0dayz Attack Surface Management, Bug Bounties, News, Penetration Testing No comments yet

All posts tagged: 0day

CVE-2024-21733 Apache Tomcat HTTP Request Smuggling

Attack Surface Management With Sn1per Professional

Products

Recent Posts

Categories

Meta

About

Contact info

Additional links