You are here:
Here you will find reports, interviews and news. We give you an insight into our work and report on 0day (zero-day) vulnerabilities discovered by our staff on customer projects or in their research time.
Page 5 of 13
Philipp Moa and Felix Aeppli identified a Padding Oracle vulnerability in the SAML login of ArcGIS.
In the latest issue of «Schweizer Personalvorsorge» you can read why a strong security culture is the very basis of an effective protection against…
Emanuel Duss and Sylvain Heiniger identified multiple vulnerabilities in the OpenVPN status monitor software openvpn-monitor.
Emanuel Duss identified a biometric authentication bypass vulnerability in the Ionic Identity Vault secure storage solution on Android.
Philipp Mao identified a hardcoded credentials vulnerability in the electronic time recording system timeCard
Emanuele Barbeno identified a vulnerability in the open source software NeDi.
Stephan Sekula identified an XSS vulnerability in the report generation tool Canopy.
Alex Joss and Emanuele Barbeno identified vulnerabilities in Intland Software´s Application-Lifecycle-Management codeBeamer.
Tino Kautschke identified an XSS vulnerability in the content management system Plone.
Sylvain Heiniger and Alex Joss identified vulnerabilities in Avaya Equinox® Conferencing, an all-inclusive solution for voice, video and desktop…
Nicolas Heiniger identified a OS Command Injection (RCE) in WorkCentre 78XX Series.
Philipp Mao identified an XML External Entity vulnerability in the FusionAuth SAML Library.
Renovate is an OSS CLI/bot that updates your software dependencies automatically. It is usually integrated into the CI/CD process and runs on a…
This little-known but increasingly prevalent attack vector exploits vulnerabilities in the Device Code Flow authentication process in Microsoft Entra…
