Dataprise Defense Digest

Recently Published

Jun 15, 2022 BY DATAPRISE

Microsoft Windows Support Diagnostic Tool(Msdt) Remote Code Execution Vulnerability


Dataprise Defense Digest

EXECUTIVE SUMMARY Microsoft Security Center, along with other researchers, have discovered a vulnerability in Microsoft’s support diagnostic tool(MSDT) dubbed “Follina”. It allows attackers to run remote code execution(RCE) with privilege escalation. It is currently being exploited in the wild. Mic...

READ MORE >  

Apr 25, 2022 BY DATAPRISE

Zero-Click RCE Vulnerability in Windows Systems (CVE-2022-26809)


Dataprise Defense Digest

EXECUTIVE SUMMARY On Tuesday, April 12th, Microsoft released patches for CVE-2022-26809 – a zero-click exploit targeting Microsoft Remote Procedure Call (RPC) Services – present in various Microsoft Windows and Windows Server Products. An unauthenticated attacker could leverage this vulnerability ...

READ MORE >  

Mar 29, 2022 BY DATAPRISE

Google Chrome Zero-Day Vulnerability


Dataprise Defense Digest

EXECUTIVE SUMMARY On March 23, 2022 an anonymous user reported a Type Confusion vulnerability in the Google Chrome browser. On March 29, 2022, Google released a new version of their popular Chrome browser to patch the zero-day vulnerability in the Chrome browser for Windows, macOS, and Linux. Micro...

READ MORE >  

Mar 28, 2022 BY DATAPRISE

Critical Unauthenticated Stack-Based Buffer Overflow Vulnerability In SonicOS


Dataprise Defense Digest

EXECUTIVE SUMMARY SonicWALL has issued a security notice for a new vulnerability affecting a number of their Firewall appliances running SonicOS. Left unpatched, this vulnerability will allow a remote, unauthenticated attacker to perform Denial of Service (DoS) or remote code execution on the firew...

READ MORE >  

Mar 08, 2022 BY DATAPRISE

Linux Dirty Pipe Vulnerability


Dataprise Defense Digest

EXECUTIVE SUMMARY:  On March 8th, 2022 researchers discovered a vulnerability that allows for overwriting arbitrary read-only values, including /etc/shadow, allowing unprivileged actors to overwrite values and execute privileged processes as root. This vulnerability is considered high severity and ...

READ MORE >  

Jan 30, 2022 BY DATAPRISE

Windows 10 Privilege Escalation Vulnerability


Dataprise Defense Digest

EXECUTIVE SUMMARY Following the recent release of Windows 10 patches (January 11, 2022), security researchers have created a proof of concept exploit that allows a user to escalate their privileges to administrator through a specific vulnerable driver. This exploit was demonstrated to be highly eff...

READ MORE >  

Jan 26, 2022 BY DATAPRISE

PwnKit – Polkit PKEXEC Vulnerability


Dataprise Defense Digest

EXECUTIVE SUMMARY: A vulnerability has been discovered in the Linux Polkit (aka PolicyKit) pkexec utility, which facilitates communication between non-privileged and privileged processes. Pollkit also allows non-users to run privileged commands within a set policy. When this vulnerability is exploi...

READ MORE >  

Jan 21, 2022 BY DATAPRISE

Cisco CLI Command Injection Vulnerability


Dataprise Defense Digest

EXECUTIVE SUMMARY: Cisco has identified a new vulnerability affecting: * SD-WAN -vEdge, IOS XE hardware; vBond, vManage, vSmart, IOS XR software * Ultra Gateway * Network Services Orchestrator * Virtual Topology System * Enterprise NFV Infrastructure Software * ConfD This is a Command Lin...

READ MORE >  

Jan 21, 2022 BY DATAPRISE

Cisco Snort Modbus Denial of Service Vulnerability


Dataprise Defense Digest

EXECUTIVE SUMMARY: Cisco has identified new vulnerabilities affecting a wide range of products: * Cybervision Software * Meraki MX Series Software * Firepower Threat Defense (FTD) Software - All platforms * 1000 & 4000 series routers (ISRs) * Catalyst 8000V, 8300, 8500, 8500L Series Edge Pl...

READ MORE >  

Jan 21, 2022 BY DATAPRISE

Cisco StarOS Software Vulnerability


Dataprise Defense Digest

EXECUTIVE SUMMARY: Cisco has identified two new vulnerabilities affecting the Redundancy Configuration Manager for StarOS Software. These vulnerabilities were discovered by Cisco internal testing and allow an unauthenticated remote attacker to gain root level privileges. With this elevated privileg...

READ MORE >  
Follow Dataprise