{"id":7617,"date":"2020-07-19T04:19:55","date_gmt":"2020-07-19T11:19:55","guid":{"rendered":"https:\/\/webdev.securin.xyz\/?p=7617"},"modified":"2023-07-10T14:48:02","modified_gmt":"2023-07-10T21:48:02","slug":"how-safe-are-web-proxy","status":"publish","type":"post","link":"https:\/\/webdev.securin.xyz\/articles\/how-safe-are-web-proxy\/","title":{"rendered":"How Safe are Web Proxy?"},"content":{"rendered":"\t\t<div data-elementor-type=\"wp-post\" data-elementor-id=\"7617\" class=\"elementor elementor-7617\" data-elementor-post-type=\"post\">\n\t\t\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-44a5abd1 elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"44a5abd1\" data-element_type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-4488b316\" data-id=\"4488b316\" data-element_type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-77e5a726 elementor-widget elementor-widget-text-editor\" data-id=\"77e5a726\" data-element_type=\"widget\" data-settings=\"{&quot;ekit_we_effect_on&quot;:&quot;none&quot;}\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<blockquote><p><strong><span style=\"font-size: 22px;\">With the Corona pandemic devastating lives around the world, cybercriminals and threat actors have joined the fray to take advantage of this situation. <\/span><\/strong><\/p><\/blockquote><p><span style=\"font-size: 18px;\">Today, the reliance on applications such as web proxy, remote conferencing, VPNs, etc. are at an all-time high which is\u00a0yet another reason for threat actors to work overtime to exploit vulnerabilities.<\/span><\/p><p>We recently released an in-depth research report called Cyber Risks in Remote Working series where we examined popular web proxy applications used\u00a0by employees\u2019 world over.<\/p><h3><strong>Key findings<\/strong><\/h3><p>The report provides an in-depth study of web proxy applications and the inherent vulnerabilities that exist within them.<\/p><blockquote><ul><li><span style=\"font-size: 20px;\"><strong>13\u00a0CVEs are weaponized<\/strong><\/span><\/li><li><span style=\"font-size: 20px;\"><strong>5\u00a0CVEs have RCE and Privilege Execution<\/strong><\/span><\/li><li><span style=\"font-size: 20px;\"><strong>Scanners such as Nessus, Nexpose, Qualys have missed\u00a02\u00a0vulnerabilities each<\/strong><\/span><\/li><\/ul><\/blockquote><h3><strong>Vulnerabilities in Web Proxies<\/strong><\/h3><ul><li>From 2010 to 2020, <strong><span style=\"color: #b22222;\">121 <\/span><\/strong>vulnerabilities have been detected in popular web proxy applications. From this, <strong><span style=\"color: #b22222;\">13 <\/span><\/strong>vulnerabilities have been weaponized.<\/li><\/ul><p><img decoding=\"async\" style=\"width: 550px; height: 376px;\" src=\"https:\/\/cybersecurityworks.com\/howdymanage\/uploads\/image\/pro1.png\" alt=\"\" \/><\/p><p>\u00a0<\/p><ul><li>From among the weaponized vulnerabilities, <span style=\"color: #b22222;\"><strong>3<\/strong><\/span> have RCE (remote code execution) capabilities, <strong><span style=\"color: #b22222;\">2<\/span><\/strong> have privilege execution.<\/li><li>\u00a0<strong><span style=\"color: #b22222;\">22 <\/span><\/strong>vulnerabilities are deemed critical with CVSS2 score &gt;= 9.<\/li><\/ul><h3><strong>Vulnerabilities in Vendors<\/strong><\/h3><ul><li>Forcepoint has <span style=\"color: #b22222;\"><strong>10 <\/strong><\/span>weaponized vulnerabilities and <strong><span style=\"color: #b22222;\">41<\/span><\/strong> vulnerabilities waiting to be weaponized and <span style=\"color: #b22222;\"><strong>1 <\/strong><\/span>is associated with RCE (Remote code execution). <span style=\"color: #b22222;\"><strong>2 <\/strong><\/span>vulnerabilities are critical in priority and will need to be fixed immediately.<\/li><li>Symantec has <span style=\"color: #b22222;\"><strong>7<\/strong><\/span> weaponized vulnerabilities and <strong><span style=\"color: #b22222;\">82 <\/span><\/strong>vulnerabilities that can be weaponized, and <strong><span style=\"color: #b22222;\">6<\/span><\/strong> vulnerabilities are associated with RCE. Symantec also has <span style=\"color: #b22222;\"><strong>21 <\/strong><\/span>critical vulnerabilities \u2013 the highest number of CVEs among the vendors.<\/li><\/ul><p><img decoding=\"async\" style=\"width: 550px; height: 392px;\" src=\"https:\/\/cybersecurityworks.com\/howdymanage\/uploads\/image\/pro2.png\" alt=\"\" \/><\/p><h3><strong>Weaponization Trends<\/strong><\/h3><ul><li>The weaponization of web proxies increased around 2015 and spiked in 2018<\/li><\/ul><p><img decoding=\"async\" style=\"width: 550px; height: 342px;\" src=\"https:\/\/cybersecurityworks.com\/howdymanage\/uploads\/image\/pro3.png\" alt=\"\" \/><\/p><p>\u00a0<\/p><blockquote><p><strong><span style=\"font-size: 22px;\">Fixing these vulnerabilities is critically essential because leading scan systems such as Nessus, Nexpose, and Qualys have missed critical CVEs in web proxies.<\/span><\/strong><\/p><\/blockquote><p style=\"text-align: center;\"><strong><span style=\"font-size: 16px;\">Count of vulnerabiliies missed by popular scanners<\/span><\/strong><\/p><table style=\"width: 500px;\" border=\"1\" cellspacing=\"1\" cellpadding=\"1\" align=\"center\"><tbody><tr><td>\u00a0<\/td><td><strong>Nessus<\/strong><\/td><td><strong>Nexpose<\/strong><\/td><td><strong>Qualys<\/strong><\/td><\/tr><tr><td><strong>Cisco<\/strong><\/td><td>2<\/td><td>2<\/td><td>2<\/td><\/tr><tr><td><strong>Total<\/strong><\/td><td><strong>2<\/strong><\/td><td><strong>2<\/strong><\/td><td><strong>2<\/strong><\/td><\/tr><\/tbody><\/table><p>CWS\u2019s report is accompanied by a helpful appendix of a list of CVEs that need to be fixed immediately and with scanners not detecting these vulnerabilities must be are addressed immediately.<\/p><p style=\"text-align: center;\"><strong>Download the whitepaper<a href=\"https:\/\/cybersecurityworks.com\/resources\/cyber-risk-series\/cyber-risk-in-web-proxies.html\">\u00a0Cyber Risk in Web Proxies<\/a><\/strong><\/p><p style=\"text-align: center;\"><strong><a href=\"https:\/\/cybersecurityworks.com\/resources\/cyber-risk-series\/cyber-risk-in-web-proxies.html\"><img decoding=\"async\" style=\"width: 559px; height: 638px;\" src=\"https:\/\/cybersecurityworks.com\/howdymanage\/uploads\/image\/banner-image\/crs-webproxy-banner.png\" alt=\"\" \/><\/a><\/strong><\/p>\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<\/div>\n\t\t","protected":false},"excerpt":{"rendered":"<p>Today, the reliance on applications such as web proxy, remote conferencing, VPNs, etc. are at an all-time high which is\u00a0yet another reason for threat actors to work overtime to exploit vulnerabilities.<\/p>\n","protected":false},"author":1,"featured_media":7618,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"content-type":"","footnotes":""},"categories":[80,109],"tags":[142,320,141,321,139,319,310,318],"acf":[],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/posts\/7617"}],"collection":[{"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/comments?post=7617"}],"version-history":[{"count":6,"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/posts\/7617\/revisions"}],"predecessor-version":[{"id":18760,"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/posts\/7617\/revisions\/18760"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/media\/7618"}],"wp:attachment":[{"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/media?parent=7617"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/categories?post=7617"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/tags?post=7617"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}