Emergency Response

Advisory: Gitlab EE multiple high-risk vulnerabilities

December 24, 2019 | Adeline Zhang

Vulnerability Description On December 10, 2019 local time, GitLab officially released an important version update notice, announcing three high-risk vulnerabilities in GitLab EE (Enterprise Edition). GitLab is an open source and web-based Git-repository management project.

Advisory: Two high-risk vulnerabilities in GoAhead web server

December 23, 2019 | Adeline Zhang

Vulnerability Description On December 2, 2019, Cisco Talos publicly released reports of a remote code execution vulnerability (CVE-2019-5096) and a denial of service vulnerability (CVE-2019-5097) for the GoAhead web server. GoAhead is an open source, simple, lightweight, and powerful embedded Web Server. It is a Web server tailored for embedded real-time operating systems (RTOS) and […]

VMware

VMware ESXi Remote Code Execution Vulnerability (CVE-2019-5544) Threat Alert

December 20, 2019 | Adeline Zhang

Overview On December 5, local time, VMware officially released a security advisory that revealed a remote code execution vulnerability (CVE-2019-5544) in VMware ESXi and Horizon DaaS. The vulnerability is due to a heap overwrite issue in OpenSLP used in ESXi and Horizon DaaS appliances. Malicious users with access to port 427 on the ESXi host […]

Harbor Multiple Vulnerabilities Threat Alert

December 17, 2019 | Adeline Zhang

Overview Today, VMware released five vulnerabilities for Harbor Container Registry, including two officially classified as critical vulnerabilities (CVE-2019-19025, CVE-2019-19023), and two high-risk vulnerabilities (CVE-2019-19029, CVE- 2019-19026), and a medium-risk vulnerability (CVE-2019-3990).

Apache Flink Arbitrary Jar Package Upload Threat Alert

December 10, 2019 | Adeline Zhang

Overview Recently, researchers have discovered the Apache Flink Jar package to upload the attack data. Attackers can exploit this vulnerability to upload a Jar package containing malicious code without authorization, thereby taking control of the target server.

Apache Solr Remote Code Execution Vulnerability (CVE-2019-12409) Threat Alert

December 3, 2019 | Adeline Zhang

Vulnerability Description On November 18, local time, Apache Software Foundation (ASF) released an official security bulletin to reveal a remote code execution vulnerability (CVE-2019-12409) in Apache Solr. This vulnerability exists and can bring security risks because the configuration item ENABLE_REMOTE_JMX_OPTS in the configuration file solr.in.sh is enabled by default. If you use the default configuration […]

Advisory: Apache Flink Remote Code Execution Vulnerability

December 2, 2019 | Adeline Zhang

Overview Recently, a security researcher announced a remote code execution vulnerability in Apache Flink Dashboard. The vulnerability does not require an attacker to authenticate, and a malicious Jar package can be uploaded via the dashboard to execute the code remotely. NSFOCUS researchers also made a successful re-enactment through research, confirming that they can attack the […]

Advisory: Apache Shiro RememberMe Padding Oracle Vulnerability

November 30, 2019 | Adeline Zhang

Vulnerability Description In September 2019, Apache officially released a vulnerability topic “RememberMe Padding Oracle Vulnerability” numbered SHIRO-721. The issue pointed out that because the RememberMe field of the Apache Shiro cookie is encrypted by the AES-128-CBC mode, Shiro is vulnerable to Padding Oracle attacks. An attacker can use the Legal RememberMe cookie as the Padding […]

Microsoft Released November 2019 Security Patches to Fix 13 Critical Vulnerabilities

November 29, 2019 | Adeline Zhang

Overview Among the vulnerabilities that Microsoft has updated in this month, there are 13 critical ones which exist in products like Hyper-V, VBScript, Exchange, and Scripting Engine.

Adobe Security Bulletins for November 2019 Security Updates Threat Alert

November 26, 2019 | Adeline Zhang

Overview On November 12, local time, Adobe officially released the November security update, which fixes multiple vulnerabilities in Adobe’s various products, including Adobe Bridge CC, Adobe Media Encoder, Adobe Illustrator CC, and Adobe Animate CC.