eSecurity Planet

OCTOBER 30, 2023

The problem: Unpatched Citrix NetScaler ADC and Gateway appliances allow attackers to retrieve authentication session cookies and other information stored in buffers. allow for authentication bypass and gain root access to systems. account”) failed to verify secret tokens received for authentication before making API requests.

Authentication 104

Authentication Mobile Accountability Software 104

eSecurity Planet

AUGUST 28, 2023

To remedy this vulnerability, Adobe recommends installing Update 16 for ColdFusion 2018 and Update 6 for ColdFusion 2021. OpenFire vulnerability persists Open-source chat server OpenFire has been affected by an authentication bypass vulnerability (CVE-2023-32315) since May. The security bulletin was last updated August 25.

VPN 98

VPN Authentication Mobile Firewall 98

eSecurity Planet

SEPTEMBER 8, 2023

Apps are protected from unauthorized access, data breaches, and other unwanted actions thanks to proactive defenses that prevent and mitigate vulnerabilities, misconfigurations, and other security weaknesses. Integration with continuous development and integration (CI/CD) processes is also important to speed and track security fixes.

Authentication 109

Authentication Architecture Firewall Threat Detection 109

eSecurity Planet

AUGUST 28, 2023

To remedy this vulnerability, Adobe recommends installing Update 16 for ColdFusion 2018 and Update 6 for ColdFusion 2021. OpenFire vulnerability persists Open-source chat server OpenFire has been affected by an authentication bypass vulnerability (CVE-2023-32315) since May. The security bulletin was last updated August 25.

VPN 95

VPN Authentication Mobile Firewall 95

eSecurity Planet

JUNE 10, 2024

The exploit combines an authentication bypass ( CVE-2024-4358 ) with a deserialization issue ( CVE-2024-1800 ). The authentication bypass permits the establishment of rogue admin accounts, but the deserialization flaw allows remote code execution, potentially giving attackers complete control over the affected servers.

Malware 80

Malware Authentication Software Telecommunications 80

eSecurity Planet

AUGUST 14, 2023

Cybersecurity and Infrastructure Security Agency (CISA) recently published an analysis of the top 12 vulnerabilities exploited in 2022. Seven of these vulnerabilities were discovered between 2018 and 2021 and remained unpatched! Email Address By signing up to receive our newsletter, you agree to our Terms of Use and Privacy Policy.

Software 98

Software Malware Internet Internet 98

eSecurity Planet

FEBRUARY 26, 2024

If your web pages are redirecting improperly or a seemingly authenticated user suddenly starts making odd changes within a privileged web app, that’s your cue to look more closely at the web page’s code. In 2018, British Airways was attacked by a group of hackers that used an XSS vulnerability in a JavaScript library.

Risk 104

Risk Financial Services Engineering Software 104