ZeroDay

Critical Microsoft Exchange ZeroDay – CVE-2022-41082 Server-Side Request Forgery (SSRF)

Critical Microsoft Exchange ZeroDay – CVE-2022-41082 Server-Side Request Forgery (SSRF) Risk: Critical CVE ID: CVE-2022-41082 CVE Score: 8.8 CWE-ID: CWE-20 – Improper Input Validation Impacted Product: Microsoft Exchange Server 2013,…

Cyber Security Tools

Data Breach

Data from 9 Million EasyJet Customers’ Exposing Data – Data Breach

EasyJet has fallen victim to a cyber-attack, which has resulted in exposing email addresses and travel details from about 9 million customers. In an official statement released yesterday, EasyJet confirmed…

Vulnerability Managment

Critical Security Patches for F5 BIG-IP and F5 BIG-IQ Devices

F5 has released security patches to fix 29 security vulnerabilities affecting multiple versions of BIG-IP and BIG-IQ devices. Out of these 29 patches, 13 are for high-severity security vulnerabilities, 15…

HiveNightMare CVE-2021-36934 | Windows Elevation of Privilege Vulnerability

CVE-2021-36934 | Windows Elevation of Privilege Vulnerability   Released: Jul 20, 2021 Last updated: Aug 10, 2021 Aug 10, 2021: Microsoft is releasing an update for all affected versions of…

Security Tips

Hot to user Nmap to scan Microsoft Exchange servers for “ProxyNoShell”, 2022-40140 & CVE-2022-41082

Hot to user Nmap to scan Microsoft Exchange servers for “ProxyNoShell”, 2022-40140 & CVE-2022-41082 1. Install Nmap on your computer 2. Go to https://github.com/CronUp/Vulnerabilidades/blob/main/proxynotshell_checker.nse 3. Copy the script content in…