๐ฅ Microsoft SharePoint RCE, CVE-2022-22005 detailed analysis from our researcher @hnd3884 ๐hnd3884.github.io/posts/cve-2022โฆ
VCSLab
119 posts
VCSLab
@vcslab
This is the Twitter channel of VCSLab - the research team of Viettel Cyber Security
- Our teammate @rskvp93 shares a little research on ASPX file handling in IIS server and four related attack vectors. ๐ฅ๐ชHope you like this blog.viettelcybersecurity.com/deep-understanโฆ
- Finally, our teammates @hoangnx99 and @_q5ca got pwn F5 Big-IP CVE-2022-1338. We didn't succeed with the http smuggling technique to Jetty in a few days but in the end, we found the magic thing. That's so tricky.๐ฅ๐ฅ๐ฅ
- From 1day to 0day (CVE-2022-30024) on TP-Link TL-WR841N from our IOT team member @Nobey98 ๐๐blog.viettelcybersecurity.com/1day-to-0day-oโฆ
- Our teammate @rskvp93 shares the exploit chain for Pwn2Own 2021 Microsoft Exchange. Two of bugs are sadly duplicated. But the third bug will include a technique using export and import EWS api to change a secret property of a mail item. blog.viettelcybersecurity.com/pwn2own-2021-mโฆ
- We luckily found some evidence to believe that: The Log4Shell vulnerability may have been exploited since August 2021. At least 10 targets have been found, including government, banks, entertainment, betting companies, etc. blog.viettelcybersecurity.com/the-log4shell-โฆ
- CVE-2021-34982 Pre-Auth RCE on Netgear R6700v3 by our IOT teammate @VngQucHuy8 ๐ฅ๐ฅblog.viettelcybersecurity.com/netgear-r6700vโฆ
- Here we are, now we are the Champions ๐คฉ๐คฉ๐คฉ
- Oracle EBS Unauth RCE #CVE-2022-21587 analysis from our researchers @vudq16 @_q5ca @hoangnx99 blog.viettelcybersecurity.com/cve-2022-21587โฆ
- Our team member @_l0gg published the analysis of CVE-2022-0540 authentication bypass in Jira Seraph with some impacted plugins. Sadly he couldn't have his reports accepted for some bug bounty programs. blog.viettelcybersecurity.com/cve-2022-0540-โฆ
- CVE-2021-38159 - Moveit Transfer SQLi detail analysis from our researcher @biennd279 @haxor31337 ๐๐ Keep working blog.viettelcybersecurity.com/moveit-transfeโฆ
- SAML ShowStopper from our researcher @_l0gg. Any software not only Manageengine that uses old version of xmlsec and xalan should take care it seriously. @_l0gg will show a technique by using DocumentHandler to defeat xslt transformer. #CVE-2022-47966 blog.viettelcybersecurity.com/saml-show-stopโฆ
- Atlassian have just released a patch to update CVE-2022-0540 that reported by our team member @_l0gg . It's authentication bypass in Seraph (web authentication framework of Jira). Atlassian rates the severity level as critical. confluence.atlassian.com/jira/jira-secuโฆ
