CVE Series

Reduce risk and keep adversaries out of your environment with hands-on training built around the latest vulnerabilities and exploits.

Start Learning for Free

Protect Your Environment

Our CVE series lets you experience critical vulnerabilities through interactive courses and secure virtual environments to develop the skills necessary to mitigate risk.

Start Learning for Free

Explore CVEs From Every Angle

Be Ready to Respond

As high-impact security flaws are discovered and exploited by adversaries in the wild, develop the skills you need to reduce risk. Subscribe to our CVE Series to be the first to know when new courses are available.

View All
Course
Free
0
H:
55
M
1
 CEUS

CVE Series: Apache Spark (CVE-2022-33891)

Apache Spark is the biggest open-source project used for large-scale data processing and machine learning. Companies love it for its fast speed and ease of use. But a security flaw allows an adversary to just add a shell command to the URI to perform an arbitrary shell command execution. Exploit this flaw today using two attack vectors!
Learn More & Enroll
Course
1
H:
15
M
2
 CEUS

CVE Series: Django (CVE-2022-34265)

Django is a Python-based web framework design for fast, easy application creation. Popular apps like Instagram and Clubhouse use Django, but are you prepared to exploit and mitigate the high-risk Django flaw (CVE-2022-34265) that leaves applications vulnerable to SQL injection attacks? Put your pentest skills to the test in our course!
Learn More & Enroll
Course
1
H:
50
M
2
 CEUS

CVE Series: Follina (CVE-2022-30190)

The Follina exploit (CVE-2022-30190) is a Windows Remote Code Execution (RCE) vulnerability that could allow a threat actor to acquire an initial level of access after a successful phishing attack. Take our course to gain the skills you need to identify the vulnerability, detect it, and mitigate it (with current best knowledge).
Learn More & Enroll
Course
1
H:
20
M
2
 CEUS

CVE Series: Confluence RCE (CVE-2022-26134)

CVE-2022-26134 is an Object-Graph Navigation Language (OGNL) injection flaw impacting Atlassian Confluence & Data Center software. Leveraging this remote code injection (RCE) flaw, adversaries can execute arbitrary code on a server. Atlassian tools are popular with more remote work, so mitigation is key. Exploit, detect, & mitigate this flaw!
Learn More & Enroll
Course
1
H:
15
M
2
 CEUS

CVE Series: OpenSSL Infinite Loop (CVE-2022-0778)

The OpenSSL infinite loop vulnerability (CVE-2022-0778) is a critical flaw impacting systems running OpenSSL versions 1.0.2, 1.1.1 and 3.0. If exploited, this vulnerability allows adversaries to perform a denial-of-service (DOS) attack. Take our course to exploit this vulnerability in a secure lab environment.
Learn More & Enroll
Course
1
H:
20
M
2
 CEUS

CVE Series: Redis (CVE-2022-0543)

The Redis vulnerability (CVE-2022-0543) is a critical flaw impacting Linux systems across the globe. By exploiting this vulnerability, any user can remotely execute commands as a root user on a system. Take our course to exploit and mitigate the vulnerability in a secure lab environment, giving you the skills you need to protect your organization.
Learn More & Enroll
Course
0
H:
45
M
1
 CEUS

CVE Series: Spring4Shell (CVE-2022-22965)

Spring4Shell (CVE-2022-22965) is a critical Remote Code Execution (RCE) vulnerability affecting Spring, a common application framework library used by Java developers. You will exploit and mitigate this vulnerability in a virtual lab, giving you the skills you need to “Spring” into action and protect your organization!
Learn More & Enroll

Empower Your Team, Protect Your Organization

Empower your team to detect and mitigate cybersecurity threats with Cybrary. Request a demo today for access to hands-on practice labs, assessments, custom content, and more.

Schedule a Demo