AppCheck Security Blog

FEATURED POST

Privilege Escalation

read more
Filter by:
View all
Case Studies
Events
General
News
Product
Research
Security Alerts
Appcheck - icons

Buffer Overflow Explained

Buffer overflows present a security challenge where a program exceeds the designated capacity of an adjoining memory block (buffer), overwriting those specific locations. As a result, buffer overflows often result in arbitrary code execution or program crashes.
Read More
Appcheck - icons

**CRITICAL RISK** CVE-2023-6345 Google Chrome < v119.0.6045.199 – Sandbox Escape via Integer Overflow Vulnerability in Skia Graphics Engine

Google Chrome is a cross-platform web browser developed by Google. It was first released in 2008 for Microsoft Windows, built with free software components from Apple WebKit and Mozilla Firefox. Versions were later released for Linux, macOS, iOS, and also for Android, where it is the default browser.
Read More
Appcheck - icons

**CRITICAL RISK** CVE-2023-49103 OwnCloud (graphAPI Extension < v0.3.1) – Disclosure of Sensitive Credentials to Unauthorised Actors via PhpInfo

ownCloud is an open-source software product for sharing and syncing of files in distributed and federated enterprise scenarios. It allows companies and remote end-users to organize their documents on servers, computers and mobile devices and work with them collaboratively, while keeping a centrally organized and synchronized state. ownCloud supports extensions like online document editing (Collabora, OnlyOffice, Microsoft 365 and Microsoft Online Office).
Read More
Appcheck - icons

**CRITICAL RISK** CVE-2023-6488 Unitronics Vision Series PLCs – Unsafe of Default or Hard-Coded Administrative Credentials

Unitronics designs, manufactures, and markets advanced control and automation solutions including a complete line of PLCs with integrated HMI, full line of VFDs, a broad array of I/Os and complementary devices, as well as programming software for all aspects of control, motion, HMI, and communications. Unitronics PLCs range from micro-PLC + HMI units for simple machine control, to complex controllers with advanced functions, a variety of onboard IOs and multiple communication options.
Read More
Appcheck - icons

Why DAST Testing is Important

Testing applications for security flaws during production is a vital process of the development lifecycle, and this is where Dynamic Application Security Testing (DAST) comes in. DAST is a security testing approach in application security (AppSec), in which testers assess an application in real-time, while it’s actively running. This process can be conducted even without testers knowing the application’s internal interactions or system-level designs.
Read More
Appcheck - icons

**CRITICAL RISK** CVE-2023-4911 GNU/Linux Operating Systems – Unauthorised Execution of Arbitrary Code via Buffer Overflow Exploit (a.k.a. “Looney Tunables”)

Meep meep! and Thufferin’ Thuccotash! It must be Wabbit Season in vulnerability management – a critical buffer overflow vulnerability dubbed “Looney Tuneables” is being actively exploited (likely by varmints) in GNU/Linux Operating Systems, so ¡Andale! ¡Andale! Time to get patching! Full details below:
Read More

Get in touch

Start your free trial

Simply complete the form and we’ll send you all you need to activate AppCheck and undertake your FREE scan.
Your details
IP Addresses
URLs