Safeguard
Tag

cve

Safeguard articles tagged "cve" — guides, analysis, and best practices for software supply chain and application security.

136 articles

Vulnerability Analysis

Text4Shell (CVE-2022-42889) Explained: RCE in Apache Commons Text Interpolation

CVE-2022-42889, Text4Shell, let attackers run code through Apache Commons Text's string interpolation when apps passed untrusted input to StringSubstitutor. Here is the flaw and why it was narrower than feared.

Jul 7, 20265 min read
DevSecOps

Why NVD alone is not enough: the case for multi-source vulnerability intelligence

NIST now fully enriches a fraction of CVEs — on April 15, 2026 it moved to a triage model that leaves most of 2025's 48,185 published CVEs without a timely severity score.

Jul 7, 20267 min read
Vulnerability Analysis

Citrix Bleed (CVE-2023-4966) Explained: Leaking Session Tokens Straight Past MFA

CVE-2023-4966, Citrix Bleed, let unauthenticated attackers read memory from NetScaler appliances and steal valid session tokens — hijacking sessions and bypassing multi-factor authentication.

Jul 6, 20265 min read
Vulnerability Analysis

Dirty Pipe (CVE-2022-0847) Explained: Overwriting Read-Only Files in the Linux Kernel

CVE-2022-0847, Dirty Pipe, let unprivileged users overwrite data in read-only files through an uninitialized pipe flag — a clean path to root. Here is the page-cache mechanism behind it.

Jul 6, 20265 min read
Concepts

What Is a Security Advisory

A security advisory is an official notice that a product has a security flaw, plus how to fix it. Here is what advisories contain, who issues them, and how to act on one.

Jul 6, 20266 min read
Vulnerability Analysis

MOVEit Transfer (CVE-2023-34362) Explained: The SQL Injection Behind the Cl0p Mass Breach

CVE-2023-34362 is a SQL injection in Progress MOVEit Transfer that let unauthenticated attackers reach the database and drop a web shell. Cl0p used it to breach thousands of organizations.

Jul 5, 20265 min read
Vulnerability Analysis

Shellshock (CVE-2014-6271) Explained: RCE Hiding in Bash Environment Variables

CVE-2014-6271, Shellshock, let attackers run commands by smuggling code into environment variables that Bash parsed as function definitions. Reachable over HTTP, DHCP, and SSH. Here is how.

Jul 5, 20265 min read
Concepts

What Is a CVSS Score

A CVSS score rates how severe a security flaw is on a scale of 0 to 10. Here is what the number means, how to read it, and why it is only part of the risk picture.

Jul 5, 20266 min read
Vulnerability Analysis

Follina (CVE-2022-30190) Explained: Code Execution From a Word Document With Macros Off

CVE-2022-30190, Follina, abused the Windows MSDT protocol handler so a Word document could run PowerShell — no macros, no enable-content click. Here is the ms-msdt mechanism.

Jul 4, 20265 min read
Concepts

Introduction to Vulnerability Scanning

Vulnerability scanning is how teams find known weaknesses before attackers do. This guide explains what a scanner actually does, the main types, how a scan works end to end, and how to turn a wall of findings into a short list of things worth fixing.

Jul 4, 20266 min read
Vulnerability Analysis

The XZ Utils Backdoor (CVE-2024-3094) Explained: A Near-Miss Supply Chain Catastrophe

CVE-2024-3094 was a deliberately planted backdoor in xz-utils 5.6.0/5.6.1 targeting sshd. It was caught by a 500ms delay one engineer refused to ignore. Here is how the attack worked.

Jul 4, 20266 min read
Vulnerability Analysis

PrintNightmare (CVE-2021-34527) Explained: When the Windows Print Spooler Ran Code as SYSTEM

CVE-2021-34527, PrintNightmare, let an authenticated attacker load a malicious printer driver through the Windows Print Spooler and execute code as SYSTEM — locally or across a domain.

Jul 3, 20265 min read
cve (Page 2) — Safeguard Blog