CVE-2022-0336 - Samba AD DC SPN Aliasing Vulnerability — Explained with Exploit Details
The world of open source software is always evolving, but sometimes vulnerabilities go unnoticed until they come back to bite us. Such is the case
CVE-2022-32156 - Unpacking the Splunk CLI TLS Certificate Validation Vulnerability
Splunk is one of the most popular platforms for searching, monitoring, and analyzing machine-generated big data. But before version 9., a significant security issue existed
CVE-2022-22306 - How Improper Certificate Validation in FortiOS Opens the Door for Man-in-the-Middle Attacks
Fortinet's FortiOS is the backbone for many organizations' firewalls, VPNs, and cloud gateways. However, between specific versions (6.. up to 7..), a
CVE-2022-26937 Windows Network File System Remote Code Execution Vulnerability.
This issue was discovered by NXP when they analyzed the firmware version on one of their products. They reported this issue to Juniper, who quickly
CVE-2022-1434 The OpenSSL 3.0 RC4-MD5 ciphersuite uses AAD as the MAC key, which is trivially predictable.
used. Due to the non-deterministic nature of IBM's implementation of the RC4-MD5 cipher, an attacker could potentially exploit this issue to generate traffic
Episode
00:00:00
00:00:00