Palo Alto Networks

Vulnerability

Prisma Cloud Mitigations for SpringShell and Recent Spring Vulnerabilities: CVE-2022-22963, CVE-2022-22965

Prisma Cloud Mitigations for SpringShell and Recent Spring Vulnerabilities: CVE-2022-22963, CVE-2022-22965

In the past week, multiple vulnerabilities affecting the Spring Framework have been disclosed to the public. Among four vulnerabilities released since the beginning of March, CVE-2022-22965, which was uncovered on March 31, 2022, had the most critical impact and was dubbed SpringShell.

The SpringShell vulnerability allows attackers unauthenticated remote code execution (RCE) to affected systems. A full analysis of the SpringShell vul...

Announcement
Cloud Security Posture Management
Cloud Workload Protection Platform
Web Application & API Security
Mar 31, 2022
By , , , and

Palo Alto Networks

Announcements
Company & Culture
Points of View
Public Sector
Products and Services
Partners
Threat Prevention, Unit 42
Palo Alto Networks Researcher Discovers Critical IE Vulnerability
Palo Alto Networks researcher Hui Gao was credited with the discovery of a new critical Microsoft vulnerability affecting Internet Explorer (IE) versions 9, 10 and 11. This vulnera...
Mar 09, 2016
By 
Endpoint
Use Traps to Protect Against BadWinmail, CVE-2015-6172
“The Dark Arts,” said Snape, “are many, varied, ever-changing, and eternal. Fighting them is like fighting a many-headed monster, which, each time a neck is severed, sprouts a head even fiercer and cleverer tha...
Jan 27, 2016
By 
Threat Prevention, Unit 42
Palo Alto Networks Researchers Discover Critical Vulnerabilities in Interne...
Palo Alto Networks researchers Bo Qu and Hui Gao were credited with the discovery of three new critical Microsoft vulnerabilities affecting Internet Explorer (IE) versions 7, 8, 9,...
Dec 10, 2015
By 
Threat Prevention, Unit 42
Palo Alto Networks Researchers Discover High Severity Vulnerability Impacti...
Palo Alto Networks researchers Tongbo Luo and Bo Qu are credited with discovering a new vulnerability (CVE-2015-7066) in OpenGL and Webkit that impacts all of Apple’s major product...
Dec 09, 2015
By 
Threat Prevention, Unit 42
Palo Alto Networks Researcher Discovers Critical Vulnerabilities in Interne...
Palo Alto Networks researcher Bo Qu was credited with discovery of six new critical Microsoft vulnerabilities affecting Internet Explorer (IE) versions 7, 8, 9, 10 and 11 and Micro...
Nov 11, 2015
By 
Threat Prevention, Unit 42
Palo Alto Networks Researcher Discovers Critical IE Vulnerability
Palo Alto Networks researcher Hui Gao was credited with discovery of a new critical Internet Explorer (IE) vulnerability affecting IE versions 6, 7, 8, 9, 10 and 11. CVE-2015-2548...
Oct 27, 2015
By 
Threat Prevention, Unit 42
Palo Alto Networks Researchers Discover Critical Vulnerabilities in Interne...
Palo Alto Networks researchers have been credited with discovery of new vulnerabilities affecting Adobe Shockwave Player and Microsoft Internet Explorer.
Sep 09, 2015
By 
Cybersecurity, Healthcare, SCADA & ICS
Tip of the Iceberg: FDA’s Alert to Unplug Hospira’s Drug Infusion Pumps fro...
On July 31, the FDA issued an alert advising healthcare facilities to stop using Hospira's Symbiq drug infusion pump due to a security vulnerability. ...
Aug 04, 2015
By 

Subscribe to Blogs!

Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more.

By submitting this form, you agree to our Terms of Use and acknowledge our Privacy Statement. Please look for a confirmation email from us. If you don't receive it in the next 10 minutes, please check your spam folder.

Get the latest news, invites to events, and threat alerts

Popular Resources

Legal Notices

Popular Links