Indusface Blog

CVE-2024-47076: Critical Linux RCE in CUPS

October 1, 2024

Vivek Chanchal

3 min Read

RCE Zero Day Vulnerabilities in CUPS Put Linux Systems at Risk

Security Bulletin

CUPS RCE Vulnerabilities (CVE-2024-47076, CVE-2024-47177, CVE-2024-47175, CVE-2024-47176) put systems at risk of remote attacks through malicious printers.

Security Bulletin

Compliance Regulations and Application security

September 27, 2024

Vinugayathri Chinnasamy

8 min Read

How do Compliance Regulations Drive Application Security?

Compliance

Explore how compliance standards like PCI DSS, SOC 2, and GDPR enhance application security by enforcing specific requirements to protect sensitive data.

Compliance

OS Command Injection in Ivanti CSA - CVE-2024-8190

September 24, 2024

Pavithra Hanchagaiah

3 min Read

CVE-2024-8190 – OS Command Injection in Ivanti CSA

Security Bulletin

Learn about CVE-2024-8190, an OS command injection vulnerability in Ivanti CSA. Discover how it allows remote code execution and ways to protect your system.

Security Bulletin

CVE-2024-8517 - Unauthenticated Remote Code Execution in SPIP

September 13, 2024

Pavithra Hanchagaiah

3 min Read

CVE-2024-8517 – Unauthenticated Remote Code Execution in SPIP

Security Bulletin

A command injection flaw (CVE-2024-27348) in SPIP allows remote attacks without authentication. Learn mitigation steps & how AppTrana provides Day 0 protection.

Security Bulletin

September 13, 2024

Vinugayathri Chinnasamy

5 min Read

Top 8 Vulnerability Management Challenges and How to Overcome Them

Vulnerability Management

Uncover top vulnerability management challenges & where organizations go wrong in addressing security gaps. Learn effective strategies to overcome these issues.

Vulnerability Management

How Frequently Should We Run a Vulnerability Scan?

August 30, 2024

Vinugayathri Chinnasamy

5 min Read

How Frequently Should We Run a Vulnerability Scan?

Vulnerability Management

Understand how to determine the perfect frequency for vulnerability scans. Protect critical systems, manage risks, and maintain compliance effectively.

Vulnerability Management

August 26, 2024

Vinugayathri Chinnasamy

4 min Read

Formjacking Attacks – How They Work and How to Prevent Them

Attacks & Data Breaches

Discover Formjacking attacks, their impact on businesses, effective prevention strategies, and PCI DSS 4.0 requirements for client-side security compliance.

Attacks & Data Breaches

August 23, 2024

Vinugayathri Chinnasamy

6 min Read

Magecart Attack – Techniques, Examples & Preventions

Attacks & Data Breaches

What is a Magecart Attack? Magecart attacks are a form of digital skimming that targets insecure websites to steal payment information. These attacks involve injecting malicious JavaScript code into e-commerce.

Attacks & Data Breaches

CVE-2024-38856 –Apache OFBiz Pre-Auth RCE Vulnerability

August 14, 2024

Pavan Bushan Reddy

5 min Read

CVE-2024-38856 –Apache OFBiz Pre-Auth RCE Vulnerability

Security Bulletin

A new zero-day vulnerability, CVE-2024-38856, has been discovered in the Apache OFBiz open-source enterprise resource planning (ERP) platform, presenting a critical threat to businesses worldwide. This pre-authentication remote code execution.

Security Bulletin

August 1, 2024

Pavan Bushan Reddy

3 min Read

Hotjar’s OAuth+XSS Flaw Exposes Millions at Risk of Account Takeover

Security Bulletin

Hotjar’s OAuth+XSS flaw risks millions. Attackers exploit this vulnerability with deceptive links, exposing user data and leading to potential takeovers.

Security Bulletin

August 1, 2024

Mohammed Ansari

4 min Read

CVE-2024-4879 & CVE-2024-5217 Exposed – The Risks of RCE in ServiceNow

Security Bulletin

Discover critical ServiceNow vulnerabilities CVE-2024-4879 & CVE-2024-5217, exposing systems to remote code execution. Learn about risks & mitigation measures.

Security Bulletin

July 31, 2024

Vinugayathri Chinnasamy

8 min Read

Web Browser-Based Attacks – Types, Examples, and Prevention

Attacks & Data Breaches

A web browser attack targets vulnerabilities in web browsers to compromise user data. These attacks often involve injecting malicious code into web pages.

Attacks & Data Breaches

Indusface Blog

RCE Zero Day Vulnerabilities in CUPS Put Linux Systems at Risk

How do Compliance Regulations Drive Application Security?

CVE-2024-8190 – OS Command Injection in Ivanti CSA

CVE-2024-8517 – Unauthenticated Remote Code Execution in SPIP

Top 8 Vulnerability Management Challenges and How to Overcome Them

How Frequently Should We Run a Vulnerability Scan?

Formjacking Attacks – How They Work and How to Prevent Them

Magecart Attack – Techniques, Examples & Preventions

CVE-2024-38856 –Apache OFBiz Pre-Auth RCE Vulnerability

Hotjar’s OAuth+XSS Flaw Exposes Millions at Risk of Account Takeover

CVE-2024-4879 & CVE-2024-5217 Exposed – The Risks of RCE in ServiceNow

Web Browser-Based Attacks – Types, Examples, and Prevention

Join 51000+ Security Leaders Get weekly tips on blocking ransomware, DDoS and bot attacks and Zero-day threats.

Fully Managed SaaS-Based Web Application Security Solution

Get free access to Integrated Application Scanner, Web Application Firewall, DDoS & Bot Mitigation, and CDN for 14 days