CVE-2022-22965 Archives

Zerobot botnet exploits 21 vulnerabilities to breach targets

Cybersecurity Attacks, Malware, Vulnerabilities & Exploits / Frank Crast / December 11, 2022 / CVE-2022-01388, CVE-2022-22965, Fortinet, Spring4Shell, WebSocket, Zerobot

Security researchers have spotted a unique botnet dubbed Zerobot exploiting 21 IoT, network and other vulnerabilities, such as F5 BIG-IP, D-Link, Zyxel, Spring4Shell and other flaws.

Zerobot botnet exploits 21 vulnerabilities to breach targets Read More »

Palo Alto Networks: Network Security Trends report highlights common RCE vulnerability exploits against web apps

Cybersecurity Articles, Cybersecurity Attacks, Vulnerabilities & Exploits / Frank Crast / August 20, 2022 / CVE-2021-20166, CVE-2021-20167, CVE-2021-21881, CVE-2021-24762, CVE-2021-28169, CVE-2021-31589, CVE-2021-39226, CVE-2021-4045, CVE-2021-43711, CVE-2022-21371, CVE-2022-21662, CVE-2022-22536, CVE-2022-22947, CVE-2022-22954, CVE-2022-22963, CVE-2022-22965, CVE-2022-24112, CVE-2022-24260, CVE-2022-25060, CVE-2022-25075, CVE-2022-25134, CVE-2022-27226, CVE-2022-29464, Palo Alto Networks, SAP, Spring, Unit 42, VMware, WordPress

Palo Alto Networks Unit 42 researchers released a new report “Network Security Trends” that highlights how attackers are exploiting remote code execution (RCE), cross-site scripting (XSS), traversal and information disclosure vulnerabilities in multiple vendor products.

Palo Alto Networks: Network Security Trends report highlights common RCE vulnerability exploits against web apps Read More »

security, professional, secret-5199239.jpg

Oracle Critical Patch Update for April 2022

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / April 20, 2022 / CVE-2022-22965, CVE-2022-23305, Database, Java, MySQL, Oracle, Spring Framework, Spring4Shell

Oracle has released its Critical Patch Update for April 2022 to include 520 vulnerability fixes across multiple products. The updates also include fixes for Log4j and Spring Framework vulnerabilities.

Oracle Critical Patch Update for April 2022 Read More »

Cisco issues Critical security updates for Spring Framework vulnerability

Network Security, Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / April 14, 2022 / Cisco, CVE-2022-22965, Spring, Spring4Shell, VMware

Cisco has issued an updated Critical security advisory for a Spring Framework vulnerability CVE-2022-22965 that affects multiple Cisco products. The networking giant also released a security update for a Critical LAN wireless controller vulnerability.

Cisco issues Critical security updates for Spring Framework vulnerability Read More »

Threat actors exploit Spring4Shell to weaponize and execute Mirai botnet

Cybersecurity Attacks, Malware, Vulnerabilities & Exploits / Frank Crast / April 8, 2022 / botnet, CVE-2022-22963, CVE-2022-22965, Mirai, Spring, Spring Framework, Spring4Shell

Researchers from Trend Micro have spotted threat actors exploiting the Spring4Shell vulnerability CVE-2022-22965 to weaponize and execute Mirai botnet.

Threat actors exploit Spring4Shell to weaponize and execute Mirai botnet Read More »