vulnerability - Attack Surface Management Solutions | Sn1perSecurity LLC

CVE-2024-21733 Apache Tomcat HTTP Request Smuggling

xer0dayz — Sun, 21 Jan 2024 19:32:46 +0000

Our security research team recently discovered a critical “0day” vulnerability which was assigned CVE-2024-21733. The vulnerability was discovered by xer0dayz from Sn1perSecurity LLC […]

The post CVE-2024-21733 Apache Tomcat HTTP Request Smuggling first appeared on Attack Surface Management Solutions | Sn1perSecurity LLC.

Confluence RCE via OGNL template injection (CVE-2022-26134)

xer0dayz — Sun, 05 Jun 2022 17:25:37 +0000

A critical vulnerability affecting the Atlassian Confluence was disclosed and designated CVE-2022-26134 which allows an un-authenticated attacker to execute arbitrary code on vulnerable […]

The post Confluence RCE via OGNL template injection (CVE-2022-26134) first appeared on Attack Surface Management Solutions | Sn1perSecurity LLC.

BIG-IP iControl REST RCE (CVE-2022-1388) Detection with Sn1per Professional

xer0dayz — Tue, 10 May 2022 13:24:08 +0000

A critical vulnerability affecting the F5 BIG-IP devices was disclosed and designated CVE-2022-1388 which allows an un-authenticated attacker to execute arbitrary code on […]

The post BIG-IP iControl REST RCE (CVE-2022-1388) Detection with Sn1per Professional first appeared on Attack Surface Management Solutions | Sn1perSecurity LLC.

VMware Workspace ONE Access freemarker SSTI (CVE-2022-22954) Detection with Sn1per Professional

xer0dayz — Thu, 14 Apr 2022 22:52:21 +0000

Information regarding a critical 0-day vulnerability affecting the VMware Workspace ONE Access and Identity Manager was disclosed and designated CVE-2022-22954 which allows an […]

The post VMware Workspace ONE Access freemarker SSTI (CVE-2022-22954) Detection with Sn1per Professional first appeared on Attack Surface Management Solutions | Sn1perSecurity LLC.

Sn1per Professional Nessus Add-on Update!

xer0dayz — Mon, 22 Nov 2021 01:34:02 +0000

In case you missed it, we recently added support for Nessus v10.x in Sn1per Professional (version 1.0 of our Nessus Add-on only supported […]

The post Sn1per Professional Nessus Add-on Update! first appeared on Attack Surface Management Solutions | Sn1perSecurity LLC.

Sn1per Professional MassPwn Add-on Released!

xer0dayz — Tue, 13 Jul 2021 16:24:24 +0000

Leverage the full power of Metasploit with the new “MassPwn Add-on” for Sn1per Professional v9.0. Easily customize each Metasploit scan to meet your […]

The post Sn1per Professional MassPwn Add-on Released! first appeared on Attack Surface Management Solutions | Sn1perSecurity LLC.

Attack Surface Management With Sn1per Professional

xer0dayz — Mon, 08 Feb 2021 17:20:26 +0000

External Attack Surface Management (EASM) has become a crucial function for every organization to gain visibility of their perimeter security. Having the right […]

The post Attack Surface Management With Sn1per Professional first appeared on Attack Surface Management Solutions | Sn1perSecurity LLC.