AmirFedida (9)

Last Login: February 15, 2022

Assessments

Score

AmirFedida's Latest (3) Contributions

Sort by:

Filter by:

AmirFedida assessed CVE-2022-0609

February 15, 2022 8:23am UTC (2 years ago)

Ratings

Attacker Value

Very High

Exploitability

Medium

Common in enterprise Unauthenticated Vulnerable in default configuration

Technical Analysis

Google is aware of reports that an exploit for CVE-2022-0609 exists in the wild.

AmirFedida assessed CVE-2021-44228 (Log4Shell)

December 12, 2021 8:47am UTC (2 years ago)•Edited 2 years ago

Ratings

Attacker Value

Very High

Exploitability

Very High

Common in enterprise Easy to weaponize Vulnerable in default configuration

Technical Analysis

New zero-day, aka Log4Shell or LogJam, is an unauthenticated remote code execution issue enabling full system compromise. CVE-2021-44228 analysis shows that all systems running Log4j 2.0-beta9 through 2.14.1 are vulnerable. Moreover, since the security issue impacts the default configs for most of Apache frameworks, such as Apache Struts2, Apache Solr, Apache Druid, Apache Flink, a wide range of software and web apps used by both enterprises and individual users are exposed to the attacks.

AmirFedida assessed CVE-2021-30807

July 27, 2021 11:57am UTC (2 years ago)•Edited 2 years ago

Ratings

Attacker Value

Very High

Exploitability

High

Common in enterprise Gives privileged access Vulnerable in default configuration

Technical Analysis

Apple is aware of a report that this issue may have been actively exploited.

This site uses cookies for anonymized analytics. For more information or to change your cookie settings, view our Cookie Policy.

AmirFedida (9)

Last Login: February 15, 2022

AmirFedida's Latest (3) Contributions

Ratings

Technical Analysis

Ratings

Technical Analysis

Ratings

Technical Analysis

Quick Cookie Notification