2025-07-23: UPDATE: we now have a reliable detection method. Nearly 500 unique IP addresses are vulnerable, accounting for numerous government […]
CVE-2025-53770, nicknamed “ToolShell”, is a critical zero-day vulnerability in Microsoft SharePoint Server that allows unauthenticated remote code execution (RCE). It’s
CVE-2025-53770 & CVE-2025-53771 Read More »
The vulnerabilities identified as CVE-2025-24799 and CVE-2025-24801 affect GLPI, an open-source IT asset management tool. These vulnerabilities allow an unauthenticated
CVE-2025-24799 & CVE-2025-24801 Read More »
CVE-2024-55591 is a critical privilege escalation vulnerability affecting FortiOS versions 7.0.0 through 7.0.16 and FortiProxy versions 7.0.0 through 7.0.19 and
The CVE-2024-3400 vulnerability is a critical flaw discovered in the GlobalProtect functionality of Palo Alto Networks’ PAN-OS operating system. It
CVE-2023-20198 is a critical vulnerability in the web user interface (UI) of Cisco’s IOS XE Software, assigned a CVSS score
CVE-2021-44228, also known as Log4Shell, is a critical security flaw discovered in Apache Log4j 2, a logging library widely used
