Skip to content

CVE

SSTI to RCE Blog

Cybersecurity Puzzle: From Server-Side Template Injection (SSTI) to Remote Code Execution (RCE)

In the ever-evolving landscape of cybersecurity, vulnerabilities continue to emerge, putting critical systems and sensitive data at risk. One such threat that has gained notoriety in recent years is the Server-Side Template Injection (SSTI) vulnerability. While SSTI on its own is a concerning issue, what makes it even more perilous is its potential to escalate… Read More »Cybersecurity Puzzle: From Server-Side Template Injection (SSTI) to Remote Code Execution (RCE)

New Critical CVE Alert Of Oct

CVE Update October 2023 – New Critical CVE Alert 2023

Welcome to FireCompass Research Team’s Weekly Cybersecurity Threat Report, highlighting critical CVEs and active threats from October 9 to October 13, 2023. Presenting an insightful overview of the latest vulnerabilities, malware, and threat actors impacting the cybersecurity landscape. Stay informed to protect your organization from emerging risks. The Key Vulnerabilities That FireCompass Has Focused On… Read More »CVE Update October 2023 – New Critical CVE Alert 2023

CVE-Alert October 2023 -FireCompass

(CVE Update August 2023) New and Critical CVEs Exploited In Wild

For the Last 2 Weeks, FireCompass research identified a huge number of CVEs that are high in severity and ransomware, botnet, threat actors creating havoc. Some of the CVEs identified are of popular commercial products used by variants of industries and some new & well know malwares targeting industries for this week. In this, we… Read More »(CVE Update August 2023) New and Critical CVEs Exploited In Wild

Ransomware Blog 2023 Firecompass

Achieve 26% Ransomware Risk Reduction By Fixing These CVEs

As per Threat Intel data published by IBM Xforce, 80% of the times, Ransomeware gets initial access using top 3 Attack Vectors – exploiting vulnerabilities contribute 26%, Shadow IT & Stolen Credentials contribute 16%, various variants of phishing attacks contribute 41%, and the rest by other attack vectors. It means that Shadow IT Discovery, identifying… Read More »Achieve 26% Ransomware Risk Reduction By Fixing These CVEs

CVE Risk Alert Firecompass banner

New & Critical CVEs Exploited In Wild – 3CX Supply Chain, IBM Aspera Faspex, Forta GoAnywhere, Apache Spark UI & More

For the last week, Firecompass Research Team have focused on 10 brand-new vulnerabilities which are Critical in severity. They are published by the global security research community. Ransomware groups and APT target many of these vulnerabilities to get Initial Access. All the vulnerabilities have Proof of Concepts (PoC) exploit code publicly available on GitHub. That… Read More »New & Critical CVEs Exploited In Wild – 3CX Supply Chain, IBM Aspera Faspex, Forta GoAnywhere, Apache Spark UI & More

Use Cases
Technology
About
Partner
Resources

©2024 FireCompass, All Rights Reserved.