Research Alerts
- CVE-2024-26026: A public PoC has been released, increasing the likelihood of exploitation by threat actors
- CVE-2024-21793: A public PoC has been released, increasing the likelihood of exploitation by threat actors
- CVE-2023-7028: Added to CISA's known exploited vulnerabilities (KEV) catalog and there are 1,400 unpatched internet-accessible GitLab servers still online. Patching is strongly advised.
- CVE-2023-49606: Over 50,000 publicly accessible hosts exposing the Tinyproxy service are vulnerable. A Proof-of-concept is also available. Patching is recommended.
- CVE-2024-33512: Specially crafted packets targeting UDP port 8211 could allow for successful exploitation of this buffer overflow vulnerability to achieve remote code execution.