TP-Link Archer Command Injection Vulnerability
TP-Link Archer AX21 (AX1800) firmware versions before 1.1.4 contains a command injection vulnerability in the web management interface. By injecting malicious commands, the attacker could execute them as the root user, potentially gaining unauthorized access and control over the router.
Microsoft Security Bulletin Coverage for July 2023
SonicWall Capture Labs threat research team has analyzed and addressed Microsoft’s security advisories for the month of July 2023.
OpenEMR Reflected XSS Vulnerability
Overview: SonicWall Capture Labs Threat Research Team has observed the following threat: OpenEMR is a comprehensive open-source electronic health records (EHR) and medical practice management application. It provides an array of functionalities aimed at enhancing […]
Agent Tesla RAT Disguised As NSIS Installer
SonicWall Capture Labs Research team recently observed an Agent Tesla malware that is being loaded by using Native Loader. Agent Tesla is an advanced Remote Access Trojan (RAT) developed using Microsoft .Net framework capable of stealing sensitive information. It has become one of the most prevalent malware families from the past couple of years.
OpenSSL OBJ_obj2txt Vulnerability
Overview: SonicWall Capture Labs Threat Research Team has observed the following threat: OpenSSL stands as a renowned open-source library, primarily utilized for SSL and TLS. The Secure Socket Layer (SSL) and the Transport Layer Security […]
CrushFTP Server-Side Template Injection (SSTI)May 1, 2024 - 9:45 am- Fake Windows Explorer Installs a Crypto MinerApril 30, 2024 - 3:39 pm
Vintage Bugs: Data Shows Old Vulnerabilities Still Menace...April 30, 2024 - 1:00 am- Android Remote Access Trojan Equipped to Harvest Creden...April 29, 2024 - 11:32 am
This post is also available in: Portuguese (Brazil) French German Japanese Korean Spanish