Cisco SD-WAN is the enterprise-wide area network solution proposed by Cisco. Cisco takes security capabilities as the core and integrates security capabilities into the entire SD-WAN solution through WAN device integration, providing comprehensive security...
Spectre and Meltdown series vulnerabilities are security issues that have plagued the entire industry in recent years because these vulnerabilities are based on the Intel processor hardware level and cannot be repaired. Although Intel...
On April 1, 2021, VMware issued a risk notice of VMSA-2021-0005 to fix authentication bypass vulnerability on VMware Carbon Black Cloud Workload, the vulnerability number is CVE-2021-21982 with the CVSSv3 score of 9.1. Attackers...
On March 30, 2021, VMWare had issued a risk notice of VMSA-2021-0004 to alert two vulnerabilities on VMWare vRealize. The vulnerability number is CVE-2021-21975, CVE-2021-21983. It is worth noting that these two vulnerabilities can...
Druid is a high-performance real-time analytics database. Druid’s main value add is to reduce time to insight and action. Druid is designed for workflows where fast queries and ingest really matter. Druid excels at...
Microsoft has released a new report on vulnerabilities in Microsoft Exchange Server servers. The report shows that 92% of servers have fixed vulnerabilities. Our work continues, but we are seeing strong momentum for on-premises...
Google has a strong security team that not only helps Google’s internal products solve security vulnerabilities, but also looks for other product vulnerabilities. For example, Apple released an emergency security update to fix a...
Previously, Microsoft Exchange Server 2013-2019 had serious security vulnerabilities, and attackers could directly invade the server to download all emails. Investigations show that tens of thousands of Exchange Server have been attacked worldwide, including...
OpenSSL is a software library for applications that secure communications over computer networks against eavesdropping or need to identify the party at the other end. It is widely used by Internet servers, including the...
Cisco Jabber is a collaboration application that provides presence, instant messaging (IM), cloud messaging, voice and video calling, voicemail capabilities. Escalate your Jabber calls into multi-party conferencing with Cisco Webex® Meetings. On March 24, 2021, Cisco...
Adobe ColdFusion is a commercial rapid web-application development computing platform created by J. J. Allaire in 1995. ColdFusion was originally designed to make it easier to connect simple HTML pages to a database. On...
Although Microsoft has issued multiple security bulletins, there are still many Microsoft Exchange Server that does not have the latest security updates installed. Microsoft Exchange Server without security updates is extremely vulnerable to hacker...
Apache OFBiz is an open-source enterprise resource planning system. It provides a suite of enterprise applications that integrate and automate many of the business processes of an enterprise. OFBiz is an Apache Software Foundation...
GitLab is an open-source project for a warehouse management system. It uses Git as a code management tool to access public or private projects through a web interface. On March 16th, GitLab officially issued...
In response to high-risk security vulnerabilities in Microsoft Exchange Server, Microsoft is currently thinking of ways to allow all companies to quickly fix the vulnerabilities to prevent servers from being invaded. Previously, Microsoft has...
On March 13, 2021, Xstream released a security update to fix many security vulnerabilities. The POC has been published. CVE Description 2021 CVE-2021-21341 XStream can cause a Denial of Service. CVE-2021-21342 A Server-Side Forgery...
