Javier García

29 marzo, 2022

K50455702: jQuery vulnerabilities CVE-2021-41182, CVE-2021-41183, and CVE-2021-41184

jQuery vulnerabilities CVE-2021-41182, CVE-2021-41183, and CVE-2021-41184 Security Advisory Security Advisory Description CVE-2021-41182 jQuery-UI is the official jQuery user interface library. More info: https://support.f5.com/csp/article/K50455702?utm_source=f5support&utm_medium=RSS

29 marzo, 2022

K33548065: Eclipse Jetty vulnerability CVE-2018-12536

Eclipse Jetty vulnerability CVE-2018-12536 Security Advisory Security Advisory Description In Eclipse Jetty Server, all 9.x versions, on webapps deployed using default Error Handling, when an ... More info: https://support.f5.com/csp/article/K33548065?utm_source=f5support&utm_medium=RSS

29 marzo, 2022

K40293611: Oracle Java SE vulnerability CVE-2022-21349

Oracle Java SE vulnerability CVE-2022-21349 Security Advisory Security Advisory Description Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE ( ... More info: https://support.f5.com/csp/article/K40293611?utm_source=f5support&utm_medium=RSS

26 marzo, 202226 marzo, 2022

What We Know: Threat Intelligence for GRU-backed Cyber Attacks

This article was written by Ant Ducker, Chad Skipper, and Frederick Verduyckt. It is anticipated that at least some upcoming cyber-attacks will be launched through some of the GRU-backed Advanced Persistent Threat Actors (APT’s). A good deal of threat intelligence is already available, in the below two examples we reference the MITRE tracking of APT28 … ContinuedThe post What We Know: Threat Intelligence for GRU-backed Cyber Attacks appeared first on VMware Security Blog. More info: https://blogs.vmware.com/security/2022/03/what-we-know-threat-intelligence-for-gru-backed-cyber-attacks.html?utm_source=rss&utm_medium=rss&utm_campaign=what-we-know-threat-intelligence-for-gru-backed-cyber-attacks

25 marzo, 202225 marzo, 2022

SysJoker – An Analysis of a Multi-OS RAT

This article was written by Sagar Daundkar. Summary SysJoker RAT is cross-platform malware which targets Windows, Linux and macOS operating systems. Being cross-platform allows the malware authors to gain advantage of wide infection on all major platforms. SysJoker has the ability to execute commands remotely as well as download and execute new malware on victim … ContinuedThe post SysJoker – An Analysis of a Multi-OS RAT appeared first on VMware Security Blog. More info: https://blogs.vmware.com/security/2022/03/%e2%80%afsysjoker-an-analysis-of-a-multi-os-rat.html?utm_source=rss&utm_medium=rss&utm_campaign=%25e2%2580%25afsysjoker-an-analysis-of-a-multi-os-rat

25 marzo, 202225 marzo, 2022

What We Know: Threat Intelligence for GRU-backed Cyber Attacks

This article was written by Chad Skipper and Ant Ducker. It is anticipated that at least some upcoming cyber-attacks will be launched through some of the GRU backed Advanced Persistent Threat Actors (APT’s). A good deal of threat intelligence is already available, in the below two examples we reference the MITRE tracking of APT28 (Fancy … ContinuedThe post What We Know: Threat Intelligence for GRU-backed Cyber Attacks appeared first on VMware Security Blog. More info: https://blogs.vmware.com/security/2022/03/what-we-know-threat-intelligence-for-gru-backed-cyber-attacks.html?utm_source=rss&utm_medium=rss&utm_campaign=what-we-know-threat-intelligence-for-gru-backed-cyber-attacks

25 marzo, 202225 marzo, 2022

K58243048: Considerations for transferring files from F5 devices

Considerations for transferring files from F5 devices Security Advisory Security Advisory Description The BIG-IP system uses Secure Vault, a secure SSL-encrypted storage system, to securely store ... More info: https://support.f5.com/csp/article/K58243048?utm_source=f5support&utm_medium=RSS

24 marzo, 202224 marzo, 2022

Securing the Container Lifecycle from Build to Run

New application development and modernization efforts are driving increased container adoption at a rapid pace. Experts predict that more than 85 percent of global organizations will be running containerized applications in production in the next few years. While there are many benefits to adopting containers and Kubernetes it also presents some challenges. The rise of containerized … ContinuedThe post Securing the Container Lifecycle from Build to Run appeared first on VMware Security More info: https://blogs.vmware.com/security/2022/03/securing-the-container-lifecycle-from-build-to-run.html?utm_source=rss&utm_medium=rss&utm_campaign=securing-the-container-lifecycle-from-build-to-run

24 marzo, 202224 marzo, 2022

K21406935: Oracle WebLogic Server vulnerability CVE-2022-21371

Oracle WebLogic Server vulnerability CVE-2022-21371 Security Advisory Security Advisory Description Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Web ... More info: https://support.f5.com/csp/article/K21406935?utm_source=f5support&utm_medium=RSS

24 marzo, 202224 marzo, 2022

K14492558: PHP vulnerability CVE-2021-21708

PHP vulnerability CVE-2021-21708 Security Advisory Security Advisory Description In PHP versions 7.4.x below 7.4.28, 8.0.x below 8.0.16, and 8.1.x below 8.1.3, when using filter functions with ... More info: https://support.f5.com/csp/article/K14492558?utm_source=f5support&utm_medium=RSS