<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=1462084720533760&amp;ev=PageView&amp;noscript=1">

White Paper:

Virsec Security Research Lab Vulnerability Report – Volume 10, 2020

The Virsec Security Research Lab, helmed by Virsec CTO, Satya Gupta, provides timely, relevant analysis about prevalent security vulnerabilities. Each week, the Virsec team details the top vulnerabilities in open source code and a few vulnerabilities in popular security controls, their affected version, vulnerability details, and how the Virsec Security Platform (VSP) can detect these vulnerabilities. This report includes:

1. CVE-2020-29599: ImageMagick (Command Injection)
2. CVE-2020-2320: Jenkins Plugin Installation Manager Tool (RCE)
3. CVE-2020-7199: HPE Edge Line Infrastructure Management Software (RCE)
4. CVE-2020-4627: IBM Cloud Pak for Security (RCE)
5. CVE-2020-29562: Glibc (Denial of Service)
6. CVE-2020-29529: Hashi Corp go-slug (Path Traversal)
7. CVE-2018-21270: Node.JS (Buffer Overflow)
8. CVE-2020-29285: POS in PHP/PDO 1.0 (SQL injection)
9. CVE-2020-28950: Kaspersky Anti-Ransomware Tool (DLL Hijack - Confused Deputy)

separator-green
separator-green - bottom