Satya Gupta

Blog – Virsec Systems

Virsec Security Research Lab Vulnerability Report The Virsec Security Research Lab, helmed by Virsec CTO, Satya Gupta, provides timely, relevant analysis about prevalent security vulnerabilities. 1.1        Vulnerability Summary LDMS/alert_log.aspx in Ivanti Endpoint Manager through 2020.1 allows SQL Injection via a /remotecontrolauth/api/device request. Ivanti Unified Endpoint Manager is an endpoint and ... Read More

Virsec Security Research Lab Vulnerability Report The Virsec Security Research Lab, helmed by Virsec CTO, Satya Gupta, provides timely, relevant analysis about prevalent security vulnerabilities. 1.1        Vulnerability Summary Windows Hyper-V Security Feature can be bypassed. This bypass could affect any Hyper-V configurations that are using Router Guard. Certain packets that ... Read More

Virsec Security Research Lab Vulnerability Report The Virsec Security Research Lab, helmed by Virsec CTO, Satya Gupta, provides timely, relevant analysis about prevalent security vulnerabilities. 1.1        Vulnerability Summary In a network-based attack an attacker with write access to an NFS share could execute code remotely within the kernel. This vulnerability ... Read More

Virsec Security Research Lab Vulnerability Report The Virsec Security Research Lab, helmed by Virsec CTO, Satya Gupta, provides timely, relevant analysis about prevalent security vulnerabilities. 1.1        Vulnerability Summary These are very early days for this vulnerability and not enough public information has been released into the NVD database. This Microsoft ... Read More

Virsec Security Research Lab Vulnerability Report The Virsec Security Research Lab, helmed by Virsec CTO, Satya Gupta, provides timely, relevant analysis about prevalent security vulnerabilities. 1.1        Vulnerability Summary Vulnerabilities have been identified in Citrix Virtual Apps and Desktops that could, if exploited, result in: A user of a multi-session Windows VDA being able to escalate their privilege level on that VDA to SYSTEM. Remote compromise of a Windows VDA that ... Read More

Virsec Security Research Lab Vulnerability Report The Virsec Security Research Lab, helmed by Virsec CTO, Satya Gupta, provides timely, relevant analysis about prevalent security vulnerabilities. 1.1        Vulnerability Summary An authenticated attacker can inject malicious code into "lang" parameter in /uno/central.php file in CMS Uno 1.6.2 and run this PHP code ... Read More

Virsec Security Research Lab Vulnerability Report The Virsec Security Research Lab, helmed by Virsec CTO, Satya Gupta, provides timely, relevant analysis about prevalent security vulnerabilities. 1.1        Vulnerability Summary A weak robustness vulnerability exists in the AWS Encryption SDKs for Java, Python, C and JavaScript prior to versions 2.0.0. Due to ... Read More

Virsec Security Research Lab Vulnerability Report The Virsec Security Research Lab, helmed by Virsec CTO, Satya Gupta, provides timely, relevant analysis about prevalent security vulnerabilities. 1.1        Vulnerability Summary Magento versions 2.4.0 and 2.3.5p1 (and earlier) are affected by an unsafe file upload vulnerability that could result in arbitrary code execution ... Read More

Virsec Security Research Lab Vulnerability Report The Virsec Security Research Lab, helmed by Virsec CTO, Satya Gupta, provides timely, relevant analysis about prevalent security vulnerabilities. 1.1        Vulnerability Summary Axios NPM package 0.21.0 contains a Server-Side Request Forgery (SSRF) vulnerability where an attacker can bypass a proxy by providing a URL ... Read More

Virsec Security Research Lab Vulnerability Report The Virsec Security Research Lab, helmed by Virsec CTO, Satya Gupta, provides timely, relevant analysis about prevalent security vulnerabilities. 1.1        Vulnerability Summary Git LFS (Large File Storage) is a Git extension developed by Atlassian, GitHub, and a few other open source contributors, that reduces ... Read More