Safeguard
Topic

Vulnerability Analysis

In-depth guides and analysis on vulnerability analysis from the Safeguard engineering team.

568 articles

Vulnerability Analysis

SaltStack Authentication Bypass Behind Mass Salt-Master E...

CVE-2020-11651 let unauthenticated attackers hijack Salt masters, triggering mass exploitation within days of disclosure. Here is what happened and how to fix it.

Nov 23, 20257 min read
Vulnerability Analysis

SaltStack Directory Traversal Paired With Auth Bypass (CV...

CVE-2020-11652, a directory traversal flaw in SaltStack's salt-master, paired with an auth bypass to enable full remote compromise. Impact, CVSS/KEV context, and fixes.

Nov 23, 20257 min read
Vulnerability Analysis

Sonatype Nexus Repository Unauthenticated RCE via REST AP...

A deep dive into CVE-2019-7238, the unauthenticated RCE in Sonatype Nexus Repository Manager 3 that fueled cryptomining campaigns worldwide.

Nov 23, 20257 min read
Vulnerability Analysis

Nexus Repository Manager 3 Remote Code Execution (CVE-202...

CVE-2020-10199 is a critical Java EL injection flaw in Sonatype Nexus Repository Manager 3 letting authenticated users achieve remote code execution.

Nov 23, 20257 min read
Vulnerability Analysis

Nexus Repository Manager Authenticated RCE via EL Injecti...

CVE-2020-10204 lets an authenticated Nexus Repository Manager user execute arbitrary code via EL injection. Here is what changed and how to respond.

Nov 22, 20257 min read
Vulnerability Analysis

Harbor Registry Privilege Escalation via Self-Registratio...

CVE-2019-16097 let attackers self-register as Harbor admins via a single API call. Here's the impact, affected versions, timeline, and how to remediate it.

Nov 22, 20257 min read
Vulnerability Analysis

Harbor Arbitrary File Overwrite via Chart Upload Path Tra...

CVE-2020-13788 let authenticated users overwrite arbitrary files on Harbor via path traversal in Helm chart uploads. Here's the impact, fix, and remediation steps.

Nov 22, 20258 min read
Vulnerability Analysis

Harbor CSRF Token Bypass Enabling Session Hijack (CVE-202...

CVE-2022-31663 let attackers bypass Harbor's CSRF protections to hijack authenticated sessions. Here's the impact, affected versions, and how to remediate.

Nov 22, 20257 min read
Vulnerability Analysis

Project Quay Improper Access Control Exposing Private Ima...

CVE-2020-27838 exposed private container images in Project Quay due to improper access control. Here's what happened, who's affected, and how to remediate it.

Nov 21, 20258 min read
Vulnerability Analysis

runc Container Breakout via /proc/self/exe Overwrite (CVE...

CVE-2019-5736 let a malicious container overwrite the host runc binary, escaping isolation to gain root on the Docker or Kubernetes host.

Nov 21, 20257 min read
Vulnerability Analysis

containerd-shim Abstract Unix Socket Exposure Enabling Co...

CVE-2020-15257 lets processes in host-networked containers reach the containerd-shim socket and escape to the host. Impact, affected versions, and fixes explained.

Nov 21, 20258 min read
Vulnerability Analysis

CRI-O 'cr8escape' Sysctl Injection Container Escape (CVE-...

CVE-2022-0811 (cr8escape) is a CRI-O flaw where an unvalidated sysctl injection let attackers escape containers and gain root on Kubernetes hosts.

Nov 21, 20257 min read
Vulnerability Analysis (Page 31) — Supply Chain Security Blog | Safeguard