Official Blog of Sirius Information Technologies

Microsoft Exchange Zero-day Remote Code Execution Vulnerabilities

Multiple vulnerabilities have been identified in Microsoft Exchange. A remote user can exploit some of these vulnerabilities to trigger remote code execution on the targeted system. Notes: No patch is currently available. [Updated on 2022-09-30] Microsoft stated that the two vulnerabilities were used for limited targeted attacks into users’ systems, the Risk Level has updated to …


Pulse Connect Secure – 0-Day Vulnerability

Overview Pulse Connect Secure (PCS) gateway contains a vulnerability that can allow an unauthenticated remote attacker to execute arbitrary code. Description CVE-2021-22893 CVSS: 10.0 An unspecified vulnerability exposed by the Windows File Share Browser and Pulse Secure Collaboration features of Pulse Connect Secure may allow a remote, unauthenticated attacker to execute arbitrary code on a …


Proudly powered by WordPress