Security Advisory

In the ever-evolving landscape of digital security, WordPress has recently released a critical code execution update, version 6.4.2, addressing a potential threat that could jeopardize the integrity of vulnerable sites. This update, ...

In today’s digital landscape, ensuring the security and integrity of your data is paramount. Atlassian, a prominent software company, recently issued a crucial advisory regarding Confluence, a popular collaboration and document management ...

CVE-2022-32158 Details Hurricane Labs is aware of the recent vulnerability involving Splunk Enterprise deployment servers. This vulnerability was announced by Splunk on 2022-06-14.  Successful exploitation of this vulnerability could result in a ...

CVE-2022-30190 (Follina) Details Hurricane Labs is aware of the recent CVE-2022-30190 / Follina Zero-Day. Follina is a remote code execution vulnerability that exists when MSDT is called using the URL protocol from ...

Summary On November 9, 2021, Microsoft released two Active Directory vulnerabilities (CVE-2021-42287 and CVE-2021-42278) with patches (KB5008102 and KB5008380). These vulnerabilities continue to fly under the radar due to Log4Shell; however, on ...

Summary On December 9, there was a Remote Code Execution (RCE) discovered in the Java logging library log4j given CVE-2021-44228. The RCE is triggered by Java-based applications logging the exploit string and ...

CVE-2021-40444 Details Summary of Vulnerability On September 7th, a security advisory from Microsoft regarding a remote code execution in MSHTML was published by MSRC. According to the advisory, the vulnerability relies on ...

On August 25th, Atlassian published a Security Advisory for Confluence–server and datacenter releases–described as a "web-based corporate wiki". To put it simply, Confluence typically serves as a centralized documentation repository.  On the ...

As we rapidly approach the end of August, another advisory regarding Exchange and OWA rears its ugly head. Microsoft Exchange has had a really rough go of it this past year–ProxyLogon (used ...

Over the past several months, Microsoft has been having a bit of a bad run with their popular email server platform: Exchange. Earlier this year, a nation-state group referred to as HAFNIUM ...