scanner - Attack Surface Management Solutions | Sn1perSecurity LLC

CVE-2024-21733 Apache Tomcat HTTP Request Smuggling

xer0dayz — Sun, 21 Jan 2024 19:32:46 +0000

Our security research team recently discovered a critical “0day” vulnerability which was assigned CVE-2024-21733. The vulnerability was discovered by xer0dayz from Sn1perSecurity LLC […]

The post CVE-2024-21733 Apache Tomcat HTTP Request Smuggling first appeared on Attack Surface Management Solutions | Sn1perSecurity LLC.

Confluence RCE via OGNL template injection (CVE-2022-26134)

xer0dayz — Sun, 05 Jun 2022 17:25:37 +0000

A critical vulnerability affecting the Atlassian Confluence was disclosed and designated CVE-2022-26134 which allows an un-authenticated attacker to execute arbitrary code on vulnerable […]

The post Confluence RCE via OGNL template injection (CVE-2022-26134) first appeared on Attack Surface Management Solutions | Sn1perSecurity LLC.

BIG-IP iControl REST RCE (CVE-2022-1388) Detection with Sn1per Professional

xer0dayz — Tue, 10 May 2022 13:24:08 +0000

A critical vulnerability affecting the F5 BIG-IP devices was disclosed and designated CVE-2022-1388 which allows an un-authenticated attacker to execute arbitrary code on […]

The post BIG-IP iControl REST RCE (CVE-2022-1388) Detection with Sn1per Professional first appeared on Attack Surface Management Solutions | Sn1perSecurity LLC.

VMware Workspace ONE Access freemarker SSTI (CVE-2022-22954) Detection with Sn1per Professional

xer0dayz — Thu, 14 Apr 2022 22:52:21 +0000

Information regarding a critical 0-day vulnerability affecting the VMware Workspace ONE Access and Identity Manager was disclosed and designated CVE-2022-22954 which allows an […]

The post VMware Workspace ONE Access freemarker SSTI (CVE-2022-22954) Detection with Sn1per Professional first appeared on Attack Surface Management Solutions | Sn1perSecurity LLC.