SolarWinds

SolarWinds Serv-U Remote Code Execution Vulnerability (CVE-2021-35211) Threat Alert

julho 23, 2021

Overview Recently, NSFOCUS CERT, through ongoing monitoring, found that SolarWinds released a security advisory fixing a remote code execution vulnerability (CVE-2021-35211). Microsoft reported to SolarWinds that they had discovered that the vulnerability was exploited in the wild and provided a proof of concept of the exploit. Unauthenticated, remote attackers could exploit this vulnerability to execute […]

SolarWinds Supply Chain Attack Threat Alert

janeiro 12, 2021

Overview

On December 14, 2020, Beijing time, FireEye posted a blog on a SolarWinds supply chain attack. The blog shows that SolarWinds software was trojanized by attackers around March 2020 and suffered a severe supply chain attack. Currently, SolarWinds has released relevant updates. Users are advised to install the updates immediately.

(mais…)

Search

Inscreva-se no Blog da NSFOCUS