Category: Qualys
Apache HTTP Server Path Traversal & Remote Code Execution (CVE-2021-41773 & CVE-2021-42013)
On October 4, 2021, Apache HTTP Server Project released Security advisory on a Path traversal and File disclosure vulnerability in Apache HTTP Server 2.4.49 and 2.4.50 tracked as CVE-2021-41773 and […]Vulnerability On-Demand Search Reporting & Easy Download options
Vulnerability reporting is different from any other aspect of a Vulnerability Management Program. The methodologies of Discover, Assess, Report and Remediate are critical components that should be included in the […]Apple fixes zero-day in iOS and iPadOS 15.0.2 emergency release: Detect and Prioritize Vulnerabilities using VMDR for Mobile Devices
Apple recently released iOS and iPadOS 15.0.2 as an emergency security update that addresses 1 critical zero-day vulnerabilities, which is exploited in wild. Qualys recommends that security teams should immediately […]From Technical Features to Customer Security Metrics
Qualys solutions are packed with great functionality to deliver operational efficiency to all our customers, but the value does not end with bits and bytes. Qualys customers can count on […]QID Spotlight: Discover Azul Java Vulnerabilities
The Qualys vulnerability signatures team has released a new series of signatures (detections) for Azul Java, allowing security teams to identify Azul Java hosts and detect their vulnerabilities. Azul is […]Prioritize Remediation with a Perceived-Risk Approach to Strengthen CyberSecurity Effectiveness
Minimizing Time To Remediate (TTR) is becoming one of the key metrics of security program effectiveness. This holistic measure represents many capabilities and is a good validation of your risk […]Improving Cybersecurity Practices by Managing the Asset Lifecycle
Securing enterprise environments continues to increase in importance. Attacks on infrastructure continue to increase and organizations need to focus more on prevention. While new vulnerabilities are continually being discovered, companies […]Google Android August 2021 Security Patch Vulnerabilities: Discover and Take Remote Response Action Using VMDR for Mobile Devices
The recently released Android Security Bulletin for August 2021 addresses 36 vulnerabilities, out of which 5 are rated as critical vulnerabilities. The vulnerabilities affect open-source components such as the Android […]Tenacity – An Adversary Emulation Tool for Persistence
Persistence is one of the more sought-after techniques of an attacker or adversary. Persistence is achieved through a set of tactics or techniques that adversaries use to maintain their foothold […]Qualys Research Nominated for Pwnie Awards 2021
The Qualys Research team has been nominated for five Pwnie Awards this year in three different categories. In addition to nominations for Best Privilege Escalation Bug (2 nominations) and Best […]Load More