CVE-2022-29893 - Intel AMT Improper Authentication Flaw—How It Works, Exploitation Explained, and Protection Steps
In 2022, security experts found a big issue in Intel’s Active Management Technology (AMT), labeled as CVE-2022-29893. It’s about a *bad authentication check*
CVE-2022-41078 - Deep Dive into the Microsoft Exchange Server Spoofing Vulnerability
Published: July 2024
Author: ExchangeSec Insights Team
Microsoft Exchange servers have been a favorite target for cyber attackers for years. The discovery of CVE-2022-41078, a
CVE-2022-38712 - How SOAPAction Spoofing Exposes IBM WebSphere Application Server
CVE-2022-38712 is a significant vulnerability affecting IBM WebSphere Application Server (versions 7., 8., 8.5, and 9.). This flaw comes from how WebSphere handles SOAPAction
CVE-2022-40747 IBM InfoSphere Information Server is vulnerable to an XML External Entity Injection attack. An attacker could exploit this to reveal sensitive information or consume memory resources.
Information on possible vectors of attack and fixes can be found here. Information on possible vectors of attack and fixes can be found here. CVE-2018-3092
CVE-2022-41776 - How Unauthenticated Access in Delta Electronics InfraSuite Device Master Lets Attackers Change Admin Passwords
Delta Electronics is a well-known provider of power and device management solutions. One of their key products is the InfraSuite Device Master, a tool commonly
Episode
00:00:00
00:00:00