Lucene search
+L
Rapid7blogMost viewed

1731 matches found

Rapid7 Blog
Rapid7 Blog
added 2021/11/30 7:3 p.m.275 views

Ongoing Exploitation of Windows Installer CVE-2021-41379

CVE | Vendor Advisory | AttackerKB | IVM Content | Patching Urgency | Last Update ---|---|---|---|---|--- CVE-2021-41379 | Microsoft Advisory | AttackerKB | Scheduled when patched | ASAP when released | December 3, 2021 3:00 PM ET See the Updates section at the end of this post for new informatio...

4.6CVSS0.4AI score0.67252EPSS
Exploits11
Rapid7 Blog
Rapid7 Blog
added 2021/12/22 9:50 p.m.273 views

Test for Log4Shell With InsightAppSec Using New Functionality

We can all agree at this point that the Log4Shell vulnerability CVE-2021-44228 can rightfully be categorized as a celebrity vulnerability. Security teams have been working around the clock investigating whether they have instances of Log4j in their environment. You are likely very familiar with...

9.3CVSS0.99999EPSS
Exploits355
Rapid7 Blog
Rapid7 Blog
added 2022/03/07 4:53 p.m.272 views

InsightVM Scan Engine: Understanding MAC Address Discovery

Written in collaboration with Jimmy Cancilla When scanning an asset, one key piece of data that the InsightVM Scan Engine collects is the MAC address of the network interface used during the connection. The MAC address is one of several attributes used by the Security Console to perform asset...

6CVSS0.8AI score0.06615EPSS
Exploits3
Rapid7 Blog
Rapid7 Blog
added 2021/12/07 9:41 p.m.270 views

Oh No, Zoho: Active Exploitation of CVE-2021-44077 Allowing Unauthenticated Remote Code Execution

CVE | Vendor Advisory | AttackerKB | IVM Content | Patching Urgency | Last Update ---|---|---|---|---|--- CVE-2021-44077 | Zoho's Advisory | AttackerKB | In Development | Immediately | December 9, 1:30pm ET Summary Zoho customers have had a huge incentive lately to keep their software up to date,...

7.5CVSS0.5AI score0.93514EPSS
Exploits6
Rapid7 Blog
Rapid7 Blog
added 2020/10/13 11:25 p.m.268 views

Patch Tuesday - October 2020

Microsoft brings us an October's Update Tuesday with 87 vulnerabilities, a sub-100 number we haven't experienced in quite some time. To further add to this oddity, there are no Browser-based vulnerabilities to mention and the arrival of a new Adobe Flash vulnerability CVE-2020-9746. Despite this...

9.3CVSS1.2AI score0.70894EPSS
Exploits23
Rapid7 Blog
Rapid7 Blog
added 2021/01/15 8:0 p.m.265 views

Metasploit Wrap-Up

Commemorating the 2020 December Metasploit community CTF A new commemorative banner has been added to the Metasploit console to celebrate the teams that participated in the 2020 December Metasploit community CTF and achieved 100 or more points: If you missed out on participating in this most rece...

7.2CVSS0.5AI score0.13958EPSS
Exploits4
Rapid7 Blog
Rapid7 Blog
added 2021/04/08 1:2 p.m.264 views

Looking Back and Moving Forward With Rapid7’s Cloud Security Solution

This blog post was co-authored by Jamie Gale and Charles Stokes. Done with Q1 The DivvyCloud by Rapid7 team has had a busy and productive start to 2021, and we anticipate that the rest of this year will be equally exciting for our valued customers. In the first three months alone, we incorporated...

6.8AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2020/10/23 6:56 p.m.259 views

Metasploit Wrap-Up

Metasploit keeping that developer awareness rate up. Thanks to mrme & wvu, SharePoint is an even better target to find in your next penetration test. The newly minted module can net you a shell and a copy of the servers config, making that report oh so much more fun. Like to escape the sandbox?...

9CVSS8.5AI score0.99737EPSS
Exploits41
Rapid7 Blog
Rapid7 Blog
added 2022/08/04 2:43 p.m.257 views

QNAP Poisoned XML Command Injection (Silently Patched)

Background CVE-2020-2509 was added to CISA’s Known Exploited Vulnerabilities Catalog in April 2022, and it was listed as one of the “Additional Routinely Exploited Vulnerabilities in 2021” in CISA’s 2021 Top Routinely Exploited Vulnerabilities alert. However, CVE-2020-2509 has no public exploit,...

7.5CVSS0.328EPSS
Exploits3
Rapid7 Blog
Rapid7 Blog
added 2021/04/09 2:20 p.m.253 views

MDR Vendor Must-Haves, Part 5: Multiple Threat Detection Methodologies, Including Deep Attacker Behavior Analysis

This blog post is part of an ongoing series about evaluating Managed Detection and Response MDR service providers. For more insights, check out our guide, “10 Things Your MDR Service Must Do.” Let’s start with an analogy: Say you’re a fisherman out on a mission to specifically catch tuna. You thr...

6.7AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2023/08/02 4:5 p.m.252 views

CVE-2023-35082 - MobileIron Core Unauthenticated API Access Vulnerability

When this blog was originally published on August 2, it said that CVE-2023-35082 only affected MobileIron Core 11.2 and earlier, which are unsupported. On August 7, Ivanti published an updated advisory noting that since originally disclosing CVE-2023-35082, they have continued their investigation...

7.5CVSS8.7AI score0.99999EPSS
Exploits14
Rapid7 Blog
Rapid7 Blog
added 2020/12/11 5:9 p.m.251 views

Metasploit Wrap-Up

In case you missed it, this past weekend the Metasploit team hosted the latest Metasploit CTF. We saw 1903 users register in this round and some excellent writeups have been published on what they found. If you participated but haven’t had a chance to fill out our feedback survey you can find it...

10CVSS0.7AI score0.86749EPSS
Exploits29
Rapid7 Blog
Rapid7 Blog
added 2021/12/15 2:58 p.m.248 views

How to Protect Your Applications Against Log4Shell With tCell

By now, we’re sure you’re familiar with all things Log4Shell – but we want to make sure we share how to protect your applications. Applications are a critical part of any organization’s attack surface, and we’re seeing thousands of Log4Shell attack attempts in our customers' environments every...

9.3CVSS9.8AI score0.99999EPSS
Exploits357
Rapid7 Blog
Rapid7 Blog
added 2022/02/25 9:48 p.m.243 views

Metasploit Weekly Wrap-Up

Exchange RCE Exchange remote code execution vulnerabilities are always valuable exploits to have. This week Metasploit added an exploit for an authenticated RCE in Microsoft Exchange servers 2016 and server 2019 identified as CVE-2021-42321. The flaw leveraged by the exploit exists in a...

6.5CVSS9.1AI score0.90388EPSS
Exploits9
Rapid7 Blog
Rapid7 Blog
added 2020/12/08 9:36 p.m.242 views

Patch Tuesday - December 2020

We close off our 2020 year of Patch Tuesdays with 58 vulnerabilities being addressed. While it's a higher count than our typical December months high thirties, it's still a nice breath of fresh air given how the past year has been. We do, however, get to celebrate that none of the reported...

10CVSS0.3AI score0.8979EPSS
Exploits20
Rapid7 Blog
Rapid7 Blog
added 2021/04/22 5:51 p.m.241 views

MDR Vendor Must-Haves, Part 8: Rapid7 Incident Response (Breach) Support

This blog post is part of an ongoing series about evaluating Managed Detection and Response MDR providers. For more insights, check out our guide, “10 Things Your MDR Service Must Do.” This is possibly the most overlooked aspect of selecting an MDR partner. But when you get to a hair-on-fire,...

7.4AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2022/11/04 1:0 p.m.240 views

Rapid7’s Impact from Apache Commons Text Vulnerability (CVE-2022-42889)

As stated in our Apache Commons Text blog post, CVE-2022-42889 is a vulnerability in the popular Apache Commons Text library that can result in code execution when processing malicious input, and affects versions 1.5 through 1.9. This vulnerability has been patched as of Commons Text version 1.10...

1AI score0.99931EPSS
Exploits42
Rapid7 Blog
Rapid7 Blog
added 2021/04/30 2:0 p.m.236 views

Rapid7's 2021 ICER Takeaways: Web Security Among the Fortune 500

This blog post covers key takeaways from our 2021 Industry Cyber-Exposure Report ICER: Fortune 500. The vast majority of the interactions an average person has with technology is through some form of a web application, but what constitutes a “web app” can be considered quite nebulous, and the...

7.1AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2022/10/11 6:35 p.m.232 views

Patch Tuesday - October 2022

The October batch of CVEs published by Microsoft includes 96 vulnerabilities, including 12 fixed earlier this month that affect the Chromium project used by their Edge browser. Top of mind for many this month is whether Microsoft would patch the two Exchange Server zero-day vulnerabilities...

1.6AI score0.9997EPSS
Exploits24
Rapid7 Blog
Rapid7 Blog
added 2021/04/07 9:23 p.m.231 views

A Quick Look Into Cloud Infrastructure Entitlement Management (CIEM)

The cloud security solutions market is growing rapidly, and there are many types of solutions to support your specific business needs. But figuring out the right tool—let alone the right type of tool—can be difficult. Gartner has five security archetypes that fall under the broader cloud security...

0.1AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2022/04/01 2:42 p.m.230 views

Update on Spring4Shell’s Impact on Rapid7 Solutions and Systems

We have completed remediating the instances of Spring4Shell CVE-2022-22965 and Spring Cloud CVE-2022-22963 vulnerabilities that we found on our internet-facing services and systems. We continue to monitor for new vulnerability instances and to remediate vulnerabilities on internally accessible...

7.5CVSS1.9AI score0.99939EPSS
Exploits134
Rapid7 Blog
Rapid7 Blog
added 2020/10/29 1:59 p.m.229 views

Trick or Treat! What We Can Learn from the Spookiest Vulnerabilities of the Year

Spooky season is in full swing, and we’re not just talking about Halloween. Security vulnerabilities can range from tiny errors to large-scale gaps in protection, and all have different consequences. We put together a list of some of the scariest vulnerabilities of the year the tricks! and the...

10CVSS9.8AI score0.9981EPSS
Exploits185
Rapid7 Blog
Rapid7 Blog
added 2020/09/25 6:54 p.m.229 views

Metasploit Wrap-up

Nine! Nine new modules! Ah ha ha! With the coming of autumn here in the Northern hemisphere, the nights are getting longer, and the hacking is getting stronger. We’ve really got something for everybody in this release, from IoT to infrastructure, Windows, and Linux; everyone’s pretty...

9.3CVSS0.3AI score0.99679EPSS
Exploits138
Rapid7 Blog
Rapid7 Blog
added 2021/06/02 9:4 p.m.228 views

CVE-2021-3198 and CVE-2021-3540: MobileIron Shell Escape Privilege Escalation Vulnerabilities

Ivanti MobileIron Core versions 10.7.0.1-9 and 11.0.0.1-3 suffer from two restricted shell escape vulnerabilities through the install rpm command present in the clish restricted shell. These issues have been fixed in version 11.1.0.0, released on March 15, 2021. The first, CVE-2021-3198, is an...

0.2AI score0.03307EPSS
Exploits2
Rapid7 Blog
Rapid7 Blog
added 2020/12/28 2:0 p.m.228 views

Taking Inspiration from Our Security Nation in an Otherwise Uninspiring Year

Well, what a year it has been. I won’t waste your time by recapping the many, many difficulties that 2020 has offered us, and instead, I will try to take a slightly different tack. While it has been a challenging for some, truly hellacious year, as we close it out, I’ve been trying out a little...

6.5AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2020/12/30 3:38 p.m.227 views

Metasploit 2020 Wrap-Up

2020 was certainly an interesting year. There were quite a few newsworthy events and some fantastic exploit content released. Let’s take a look at what 2020 meant for Metasploit. Quick stats Some quick statistics for Metasploit’s year. 737 pull requests merged and counting A net gain of +179...

7.5CVSS0.1AI score0.97116EPSS
Exploits65
Rapid7 Blog
Rapid7 Blog
added 2020/10/02 7:46 p.m.227 views

Metasploit Wrap-Up

Windows secrets dump The following provided by Christophe De La Fuente! A common pen testing pattern is to compromise a local administrative account on a host and use it to grab Windows password hashes, kerberos tickets, and other secrets stored locally. The most common technique is to run tools...

7.2CVSS7.4AI score0.39967EPSS
Exploits28
Rapid7 Blog
Rapid7 Blog
added 2022/02/18 9:24 p.m.226 views

Metasploit Weekly Wrap-Up

Nagios XI web shell upload module New this week is a Nagios Web Shell Upload module from Rapid7' own Jake Baines, which exploits CVE-2021-37343. This module builds upon the existing Nagios XI scanner written by Erik Wynter. Versions of Nagios XI prior to 5.8.5 are vulnerable to a path traversal...

7.5CVSS0.99943EPSS
Exploits45
Rapid7 Blog
Rapid7 Blog
added 2023/07/11 3:30 p.m.225 views

CVE-2023-29298: Adobe ColdFusion Access Control Bypass

Rapid7 discovered an access control bypass vulnerability affecting Adobe ColdFusion, in a product feature designed to restrict external access to the ColdFusion Administrator. Rapid7 reported this vulnerability to Adobe on April 11, 2023 and we are now disclosing it in accordance with our...

5CVSS7.2AI score0.99761EPSS
Exploits13
Rapid7 Blog
Rapid7 Blog
added 2021/01/12 11:59 p.m.225 views

Patch Tuesday - January 2021

We arrive at the first Patch Tuesday of 2021 2021-Jan with 83 vulnerabilities across our standard spread of products. Windows Operating System vulnerabilities dominated this month's advisories, followed by Microsoft Office which includes the SharePoint family of products, and lastly some from les...

9.3CVSS1.1AI score0.39653EPSS
Exploits5
Rapid7 Blog
Rapid7 Blog
added 2022/04/19 5:52 p.m.224 views

What's New in InsightVM and Nexpose: Q1 2022 in Review

The world of cybersecurity never has a dull moment. While we are still recovering from the aftermath of Log4Shell, the recent ContiLeaks exposed multiple vulnerabilities that have been exploited by the Conti ransomware group. It’s critical for your team to identify the risk posed by such...

9.3CVSS0.2AI score0.99999EPSS
Exploits355
Rapid7 Blog
Rapid7 Blog
added 2021/04/07 9:22 p.m.224 views

A Quick Look Into Cloud Workload Protection Platforms (CWPPs)

The cloud security solutions market is growing rapidly, and there are many types of solutions to support your specific business needs. But figuring out the right tool—let alone the right type of tool—can be difficult. Gartner has five security archetypes that fall under the broader cloud security...

Exploits0
Rapid7 Blog
Rapid7 Blog
added 2021/03/18 8:19 p.m.224 views

F5 Discloses Eight Vulnerabilities—Including Four Critical Ones—in BIG-IP Systems

Update March 25, 2021: CVE-2021-22986 is now being actively exploited in the wild by a range of malicious actors. Rapid7 has in-depth technical analysis on this vulnerability, including proof-of-concept code and information on indicators of compromise, available here. On March 10, 2021, F5...

0.8AI score0.99898EPSS
Exploits22
Rapid7 Blog
Rapid7 Blog
added 2020/11/11 1:3 a.m.224 views

Patch Tuesday - November 2020

Jumping right back to a triple digit volume of vulnerabilities resolved, Microsoft covers 112 CVEs this November affecting products ranging from our standard Windows Operating Systems and Microsoft Office products to some new entries such as Azure Sphere. Microsoft CVE-2020-17087: Windows Kernel...

10CVSS0.3AI score0.09857EPSS
Exploits1
Rapid7 Blog
Rapid7 Blog
added 2020/11/13 7:8 p.m.221 views

Metasploit Wrap-Up

SaltStack RCE wvu-r7 added an exploit module that targets SaltStack’s Salt software. Specifically, the module exploits both an authentication bypass CVE-2020-25592 and a command injection vulnerability CVE-2020-16846 in SaltStack’s REST API to get code execution as root through Salt’s SSH client ...

9.3CVSS0.1AI score0.99585EPSS
Exploits27
Rapid7 Blog
Rapid7 Blog
added 2022/06/10 6:7 p.m.219 views

Metasploit Weekly Wrap-Up

A Confluence of High-Profile Modules This release features modules covering the Confluence remote code execution bug CVE-2022-26134 and the hotly-debated CVE-2022-30190, a file format vulnerability in the Windows Operating System accessible through malicious documents. Both have been all over the...

9.3CVSS0.8AI score0.99999EPSS
Exploits138
Rapid7 Blog
Rapid7 Blog
added 2022/06/23 10:39 p.m.217 views

CVE-2022-31749: WatchGuard Authenticated Arbitrary File Read/Write (Fixed)

A remote and low-privileged WatchGuard Firebox or XTM user can read arbitrary system files when using the SSH interface due to an argument injection vulnerability affecting the diagnose command. Additionally, a remote and highly privileged user can write arbitrary system files when using the SSH...

7.8CVSS0.6AI score0.78303EPSS
Exploits9
Rapid7 Blog
Rapid7 Blog
added 2021/05/06 7:29 p.m.215 views

MDR Vendor Must-Haves, Part 9: Assigned Analyst Pods and Security Program Advisors

This blog post is part of an ongoing series about evaluating Managed Detection and Response MDR providers. For more insights, check out our guide, “10 Things Your MDR Service Must Do.” Every organization is unique, with different goals, missions, security maturities, staffing models, technologies...

7AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2022/04/12 5:15 p.m.214 views

CVE-2022-24527: Microsoft Connected Cache Local Privilege Escalation (Fixed)

On April 12, 2022, Microsoft published CVE-2022-24527, a local privilege escalation vulnerability in Microsoft Connected Cache. The vulnerability allowed a local low-privileged user to execute arbitrary Powershell as SYSTEM due to improper file permission assignment CWE-732. Product description...

5CVSS1.3AI score0.80004EPSS
Exploits9
Rapid7 Blog
Rapid7 Blog
added 2022/01/10 2:57 p.m.213 views

The 2021 Naughty and Nice Lists: Cybersecurity Edition

Editor’s note: We had planned to publish our Hacky Holidays blog series throughout December 2021 – but then Log4Shell happened, and we dropped everything to focus on this major vulnerability that impacted the entire cybersecurity community worldwide. Now that it’s 2022, we’re feeling in need of...

9.3CVSS9.9AI score0.99999EPSS
Exploits355
Rapid7 Blog
Rapid7 Blog
added 2021/12/10 9:36 p.m.213 views

Metasploit Wrap-Up

Word and Javascript are a rare duo. Thanks to thesunRider. you too can experience the wonder of this mystical duo. The sole new metasploit module this release adds a file format attack to generate a very special document. By utilizing Javascript embedded in a Word document to trigger a chain of...

6.8CVSS7.4AI score0.96843EPSS
Exploits38
Rapid7 Blog
Rapid7 Blog
added 2021/03/25 1:2 p.m.213 views

Attack vs. Data: What You Need to Know About Threat Hunting

Mitigate threats by going on the offensive While the definition of threat hunting may be straightforward—proactively hunting for threats—the reality of implementing a threat-hunting program is a bit more complicated, as there are different threat-hunting methodologies to choose from. In order to...

0.2AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2024/06/11 7:43 p.m.212 views

Patch Tuesday - June 2024

It’s June 2024 Patch Tuesday. Microsoft is addressing 51 vulnerabilities today, and has evidence of public disclosure for just a single one of those. At time of writing, none of the vulnerabilities published today are listed on CISA KEV, although this is always subject to change. Microsoft is...

9.8CVSS9.7AI score0.99995EPSS
Exploits28
Rapid7 Blog
Rapid7 Blog
added 2023/06/01 3:23 p.m.212 views

Rapid7 Observed Exploitation of Critical MOVEit Transfer Vulnerability

Note: As of June 2, 2023, CVE-2023-34362 has been assigned to this vulnerability. On Friday, June 9, Progress Software released patches for a second vulnerability, CVE-2023-35036. On Thursday, June 15, a third vulnerability was announced and later assigned CVE-2023-35708. Progress has updates her...

7.5CVSS10.4AI score0.99934EPSS
Exploits15
Rapid7 Blog
Rapid7 Blog
added 2026/05/29 4:49 p.m.210 views

Rapid7 Observed Exploitation of PAN-OS GlobalProtect Authentication Bypass Vulnerability (CVE-2026-0257)

Overview On May 13, 2026, Palo Alto Networks published a security advisory for CVE-2026-0257, a medium severity authentication bypass affecting PAN-OS and Prisma Access when a specific configuration is present. Successful exploitation of this vulnerability allows a remote unauthenticated attacker...

9.1CVSS6.2AI score0.86678EPSS
Exploits11
Rapid7 Blog
Rapid7 Blog
added 2021/08/11 3:19 a.m.208 views

Patch Tuesday - August 2021

Hot off the press, it’s another issue of the Patch Tuesday blog! While the number of vulnerabilities is low this month, there are a number of high risk items administrators will want to patch right away including a few that will require additional remediation steps. This Patch Tuesday also includ...

7.5CVSS0.9AI score0.67252EPSS
Exploits26
Rapid7 Blog
Rapid7 Blog
added 2021/12/10 3:30 p.m.207 views

Widespread Exploitation of Critical Remote Code Execution in Apache Log4j

Table of Contents Overview Affected versions Mitigation and detection guidance Rapid7 customers InsightVM and Nexpose InsightIDR and Managed Detection and Response Velociraptor tCell InsightCloudSec IntSights Attacks and campaigns External resources Updates Need clarity on detecting and mitigatin...

9.3CVSS0.2AI score0.99999EPSS
Exploits362
Rapid7 Blog
Rapid7 Blog
added 2023/03/14 11:46 p.m.206 views

Patch Tuesday - March 2023

Microsoft is offering fixes for 101 security issues for March 2023 Patch Tuesday, including two zero-day vulnerabilities; the most interesting of the two zero-day vulnerabilities is a flaw in Outlook which allows an attacker to authenticate against arbitrary remote resources as another user...

5CVSS0.4AI score0.97408EPSS
Exploits40
Rapid7 Blog
Rapid7 Blog
added 2021/02/26 7:23 p.m.205 views

Metasploit Wrap-Up

Hey who finked about Flink? In this week's round of modules, contributor bcoles offered up two modules to leverage that Apache Flink install you found in some fun new ways. If you are just looking to filch a few files, auxiliary/scanner/http/apacheflinkjobmanagertraversal leverages CVE-2020-17519...

7.2CVSS8.7AI score0.99295EPSS
Exploits95
Rapid7 Blog
Rapid7 Blog
added 2020/12/22 3:2 p.m.205 views

UPnP With a Holiday Cheer

T'was the night before HaXmas, when all through the house, Not a creature was stirring, not even a mouse. The stockings were hung by the chimney with care, in hopes that St. Nicholas soon would be there. This may be the way you start your holiday cheer, but before you get started, let me make you...

7.1AI score
Exploits0
Total number of security vulnerabilities1731