Research Alerts
- CVE-2024-4040: Researchers say over 1,400 CrushFTP publicly accessible servers are vulnerable. Proof-of-concept is available. Update to a fixed version as soon as possible.
- CVE-2024-3400: Research shows over 22,500 Palo Alto GlobalProtect instances are possibly vulnerable to this flaw as a public proof-of-concept is available. Immediate patching is recommended.
- CVE-2023-7028: Added to CISA's known exploited vulnerabilities (KEV) catalog and there are 1,400 unpatched internet-accessible GitLab servers still online. Patching is strongly advised.
- CVE-2024-33512: Specially crafted packets targeting UDP port 8211 could allow for successful exploitation of this buffer overflow vulnerability to achieve remote code execution.
- CVE-2024-33511: Specially crafted packets targeting UDP port 8211 could allow for successful exploitation of this buffer overflow vulnerability to achieve remote code execution.