Skip to main content
Compass SecurityCompass Security
Search
  • DE
  • FR
  • Current
    • News
    • Blog
    • Agenda
    • Advisories
  • Services
    • Penetration Tests
    • Security Review
    • Red Teaming
    • Purple Teaming
    • Bug Bounty Managed Service
    • Managed Detection and Response
    • Incident Response and Forensics
    • Industrial Cybersecurity
  • Products
    • Managed Security Content for Microsoft Defender XDR
    • FileBox
    • Hacking-Lab
  • Trainings
    • Crisis Management & Cybersecurity Tabletop Exercise (TTX)
    • Digital Forensics and Incident Response (DFIR)
    • Internal Network and System Security
    • Internet of Things Security
    • Open Source Intelligence (OSINT)
    • Secure Mobile Apps
    • Security Boot Camp
    • Social Engineering
    • Web Application Security Advanced
    • Web Application Security Basic
  • Research
    • Advisories
    • White Paper
    • Presentations
    • Studies
  • Company
    • About us
    • Contact
    • Testimonials
    • Public Statements
    • Mailing list TIGER-INFO
    • Jobs
  • Contact
    • Free Initial Discussion
    • Sample Report
    • Locations
  • Emergency?
  • DE
  • FR
Search

You are here:

  1. Compass Security
  2. News
  3. Detail

Vulnerabilities on AdRem NetCrunch platform

12/09/2020

Thierry Viaccoz, Sylvain Heiniger and Fabio Poloni identified several vulnerabilities in the AdRem NetCrunch monitoring solution.

 

Details to these advisories:

CSNC-2019-011 / Server-Side Request Forgery (SSRF)

CSNC-2019-012 / Improper Credential Storage

CSNC-2019-013 / Cross-Site Scripting (XSS)

CSNC-2019-014 / Remote Code Execution

CSNC-2019-015 / Improper Session Handling

CSNC-2019-016 / Cross-Site Request Forgery (CSRF)

CSNC-2019-017 / Hardcoded SSL Private Key

CSNC-2019-018 / Credentials Disclosure

 

Back

Blog

Entra Agent ID from a Security Perspective

09.06.2026

AI agents in your Entra ID tenant? They come with new identities, permissions, and fresh attack paths.

 

Christian Feuchter breaks down Entra Agent ID…

Read more

Calendar

all about automation 2026 - Zurich

26.08.2026

At all about automation, users and decision-makers connect with manufacturers, system integrators, software providers, and service companies in the…

Read more

News

Verizon DBIR 2026: Erkenntnisse aus realen Cyberangriffen

19.05.2026

The Verizon Data Breach Investigations Report 2026 provides up-to-date insights into real-world cyberattacks, threats, and trends from practice –…

Read more
  • Imprint
  • Legal
  • Sitemap
  • Deutsch
  • Français
  • Twitter
  • GitHub
  • LinkedIn
  • RSS