NSFOCUS was invited to attend the China Information and Communication Industry Development Summit 2019 held in Beijing on October 30, 2019 and was awarded the "5G Innovation Enterprise" in this summit.  NSFOCUS assures security for commercial 5G services  (more…)
Year: 2019
IP Reputation Report-12012019
Top 10 countries in attack counts: The above diagram shows the top 10 regions with the most malicious IP addresses from the NSFOCUS IP Reputation databases at December 01, 2019. (more…)
Cybersecurity Insights-7
Insights into Malicious Traffic 5.1 Vulnerability Exploitation Here we classify vulnerabilities into server vulnerabilities desktop application vulnerabilities device vulnerabilities (more…)
Apache Solr Remote Code Execution Vulnerability (CVE-2019-12409) Threat Alert
Vulnerability Description On November 18, local time, Apache Software Foundation (ASF) released an official security bulletin to reveal a remote code execution vulnerability (CVE-2019-12409) in Apache Solr. This vulnerability exists and can bring security risks because the configuration item ENABLE_REMOTE_JMX_OPTS in the configuration file solr.in.sh is enabled by default. If...
Advisory: Apache Flink Remote Code Execution Vulnerability
Overview Recently, a security researcher announced a remote code execution vulnerability in Apache Flink Dashboard. The vulnerability does not require an attacker to authenticate, and a malicious Jar package can be uploaded via the dashboard to execute the code remotely. NSFOCUS researchers also made a successful re-enactment through research, confirming...
Advisory: Apache Shiro RememberMe Padding Oracle Vulnerability
Vulnerability Description In September 2019, Apache officially released a vulnerability topic "RememberMe Padding Oracle Vulnerability" numbered SHIRO-721. The issue pointed out that because the RememberMe field of the Apache Shiro cookie is encrypted by the AES-128-CBC mode, Shiro is vulnerable to Padding Oracle attacks. An attacker can use the Legal...
