Multiple external config control vulnerabilities exists in the openvpn.cgi openvpn_server_setup() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request to trigger these vulnerabilities.A configuration injection vulnerability exists in the `sel_open_interface` POST parameter.
#RESEARCH

Learn how to protect your ML advantage. Check out HiddenLayer’s recent releases, announcements, and musings on protecting your algorithms.

The SecOps Automation Blog. Practical tips & threat analysis from Intezer's Research Team. Product news. Industry insights on the evolution of security operations, automation, and AI.

NEW

watchTowr Labs is the epicentre of offensive security expertise at watchTowr - injecting offensive security insight, innovation and research into the watchTowr Platform.

Recorded Future’s Insikt Group produces research that creates action to disrupt adversaries. We write on a range of cyber and geopolitical topics, including state-sponsored threat groups; financially-motivated threat actors on the darknet and criminal underground; newly emerging malware and attacker infrastructure; strategic geopolitics; and influence operations.

The Barracuda blog brings you the latest news, research, and insights you can’t get anywhere else.

Talos intelligence and world-class threat research team better protects you and your organization against known and emerging cybersecurity threats.

Interactive data from scam reports including amount lost, scam types, types of scam and delivery methods.

The Intelligence and research arm of Check Point Technologies provides leading cyber threat intelligence to Check Point customers and the greater intelligence community.

MDSec was founded on the principles that traditional security assessment describes problems, but Security Education helps fix or avoid them.

Thoughts, research, reports, and more from Truffle Security Co.

Understandable online privacy & cybersecurity information to keep you and your data safe. Latest cybersecurity research & trends.

Elastic Security Labs empowers security teams across the globe with novel security intelligence research and free to use tools.

Get the intelligence you need to detect, prevent & respond to cyber threats. Read the Intel 471 cyber threat intelligence blog.

Read SafeBreach’s original threat research reports and learn about updates to our Hacker’s Playbook.

Cybersecurity News, Awards, eSummits, Research.

Our research findings are for everyone’s benefit.

Defuse Security. Home of PIE Bin, TRENT, and more...

The latest research, reports and releases from the minds at Permiso Security.

This subreddit is for technical professionals to discuss cybersecurity news, research, threats, etc.

The latest cybersecurity trends, best practices, security vulnerabilities, and more.

Keep up with the latest attack trends, research, and cybersecurity industry updates on the Perception Point blog!

The list of research articles compiled by SecurityScorecard.

RTC security Research, talks and tools. We are researchers in cyber-security, continually educating ourselves and developing knowledge and code. By sharing what we learn, we hope to push RTC security forward.

Unit 42 brings together world-renowned threat researchers, incident responders and security consultants to create an intelligence-driven, response-ready organization that's passionate about helping you proactively manage cyber risk.

Read McAfee Labs blogs for the latest threat research, threat intelligence, and thought leadership from the Threat Research team.

Kaspersky's threat research and reports.