CVE-2023-5129: A Critical libwebp Vulnerability
A significant bypass vulnerability, CVE-2023-2283, has been identified in the libssh library. Learn about what this means and how to mitigate it.
Read MoreNotable Increase in Password Spraying Activity Against Cisco ASA SSL VPNs
Cisco ASA SSL VPNs are under attack. Learn about the increase in password spraying, how to secure your VPN, enable MFA, monitor logs, and leverage existing Blumira detections to protect your network from unauthorized access.
Read MoreFortinet Fortigate SSL VPN Pre-Auth RCE Vulnerability (CVE-2023-27997)
A vulnerability (CVE-2023-27997) in multiple Fortinet Fortigate devices with SSL VPN enabled allows unauthenticated remote code execution (RCE).
Read MoreAuthentication Bypass Vulnerability in LibSSH (CVE-2023-2283)
A significant bypass vulnerability, CVE-2023-2283, has been identified in the libssh library. Learn about what this means and how to mitigate it.
Read MoreZero-Day Vulnerability Found In MOVEit Transfer
Blumira detected the first known zero-day exploitation of the MOVEit files transfer utility. Learn how to protect against it.
Read MoreQueueJumper (CVE-2023-21554) Enables Remote Execution with MSMQ
With CVE-2023-21554 aka QueueJumper, an attacker can use TCP port 1801 to execute code remotely and without authorization on a MSMQ-enabled server — effectively taking over the server.
Read More