Latest Updates

VulnCheck integrates with OpenCTI - an open-source Threat Intelligence Platform by Filigran

VulnCheck discovers that a new vulnerability affecting Four-Faith industrial routers has been exploited in the wild

VulnCheck discovers evidence that ProjectSend has been exploited in the wild and assigns CVE-2024-11680

In September, VulnCheck identified evidence of 78 CVEs that were publicly disclosed for the first time as exploited in the wild.

VulnCheck delivers intelligence to the command line with VulnCheck’s new open source tool, VulnCheck CLI.

Discover 5 ways VulnCheck enhances your security product offering with real-time intelligence, detection capabilities, and expanded vulnerability visibility.

Demonstrating the new scanless feature in the go-exploit exploit framework.

VulnCheck uncovers the truth behind the recently published Zyxel pre-auth remote code execution: limited to specific configurations, limitations on repeated exploitation, and no evidence of active exploitation.

VulnCheck faces a horde of honeypots while assessing the potential impact of Atlassian Confluence's CVE-2023-22527. This blog delves into Shodan queries to filter out honeypots and uncover the actual on-premise Confluence install base.

VulnCheck recently announced an IP Intelligence product that tracks attacker command & control (C2) infrastructure, as well as internet-facing potentially vulnerable systems. Using this data, we’ll explore the vulnerabilities that the 7777-Botnet is likely using to infect new hosts.

VulnCheck was excited to breach ICS networks when CVE-2023-43261 was first disclosed. However, there is more to this than the CVE description would lead you to believe. Follow VulnCheck’s journey from CVE description to exploitation in the wild

VulnCheck demonstrates the use of the RocketMQ remoting protocol to retrieve the broker configuration file, and shares attacker payloads used in the wild for exploitation with CVE-2023-33246.

CVE-2023-23752 is an information leak affecting Joomla! 4.0 - 4.7. How can an attacker use this vulnerability to achieve code execution? How many internet-facing systems are at risk?

Examining previous exploits for Grafana's CVE-2021-43798 and looking for a path to establish initial access.

Taking a look at the timeline leading up to exploitation of CVE-2022-35914 and the current state of attacks in the wild.

An examination of vulnerabilities affecting Xiongmai IoT devices, including exploit development and an analysis of exploitation in the wild.