Qualys (@qualys) on X

Qualys

10.9K posts

Qualys

@qualys

The leading provider of disruptive cloud-based security, compliance and IT solutions.

Foster City, CA

Joined February 2009

Pinned
Qualys
@qualys
May 19
The @VerizonBusiness 2026 Data Breach Investigations Report (#DBIR) has been published, and the Qualys Threat Research Unit (#TRU) is proud to have served as a research partner. Our four-year CISA KEV survival curve analysis anchors the Survival of the Vulnerable section on page
419
Qualys
@qualys
Jul 1, 2024
The award-winning Qualys Threat Research Unit (TRU) has discovered a critical vulnerability in OpenSSH, designated CVE-2024-6387 and aptly named "regreSSHion." This Remote Code Execution bug grants full root access, posing a significant exploitation risk.
OpenSSH CVE-2024-6387 RCE Vulnerability: Risk & Mitigation | Qualys
From blog.qualys.com
525K
Qualys
@qualys
Jan 26, 2021
The Qualys Research Team has discovered a critical vulnerability in #Sudo, which allows an unprivileged user to gain root privileges in its default configuration. #linux #unix #vulnerability
Sudo Vulnerability CVE-2021-3156: Root Access Risk | Qualys
From blog.qualys.com
Qualys
@qualys
Jul 20, 2021
Sequoia: A Local Privilege Escalation Vulnerability in Linux’s Filesystem Layer (CVE-2021-33909): Any unprivileged user can gain root privileges on a vulnerable host by exploiting this vulnerability in a default configuration.
Sequoia: A Local Privilege Escalation Vulnerability in Linux’s Filesystem Layer (CVE-2021-33909) |...
From blog.qualys.com
Qualys
@qualys
Jan 25, 2022
The #Qualys Research Team has discovered an easily exploitable memory corruption vulnerability (#Pwnkit) in polkit a SUID-root program that allows any unprivileged local user to gain root privileges on all major linux systems in its default configuration: fal.cn/3lCr6
00:00
Qualys
@qualys
May 4, 2021
Qualys Research Team discovered 21 severe vulnerabilities in Exim, the mail transfer agent (MTA) responsible for 60% of internet mail traffic. #21Nails could allow a remote attacker to gain full root privileges on the target server & execute commands. blog.qualys.com/vulnerabilitie…
Qualys
@qualys
Jan 17, 2024
#CloudSecurity is a complex landscape, and the challenges of protecting it are unique. Don’t miss this opportunity to hear experts offer their best advice on what security leaders need to know to protect their #cloud assets. #CyberRiskSeries
Home
From qualys.brighttalk.com
2.1M
Qualys
@qualys
Jan 14, 2016
#OpenSSH vulnerability (CVE-2016-0777 and CVE-2016-0778) full details and exploit: qualys.com/2016/01/14/cve…
Qualys
@qualys
Jun 19, 2017
The Stack Clash: vulnerability in memory management of Linux, OpenBSD, NetBSD, FreeBSD and Solaris, on i386 & amd64
The Stack Clash | Qualys
From blog.qualys.com
Qualys
@qualys
Jan 9, 2019
System Down Vulnerability: Qualys discloses three locally-exploitable vulnerabilities in systemd-journald, which is in every modern Linux distro qualys.com/research/secur…
Qualys
@qualys
Dec 4, 2019
Qualys researchers discovered an authentication-bypass vulnerability (CVE-2019-19521) in OpenBSD's authentication system. Special thanks to Theo de Raadt and the OpenBSD developers for a very quick response: they published patches in <40 hours. qualys.com/2019/12/04/cve…
Qualys
@qualys
Mar 17, 2015
GHOST remote code execution exploit published: community.qualys.com/blogs/laws-of-…
Qualys
@qualys
Jun 28, 2017
Stack Clash exploits are now available:
Track Critical Vulnerabilities with Qualys Security Advisories
From qualys.com
Qualys
@qualys
Feb 17, 2022
The #Qualys Research Team has discovered Oh Snap! More Lemmings: Local Privilege Escalation vulnerability in snap-confine, a SUID-root program that is installed by default on #Ubuntu. Discover vulnerable Linux servers using Qualys #VMDR: fal.cn/3mfXS
00:00