LabNews

Security Advisories for Jellyfin

The usd HeroLab analysts examined the multimedia application Jellyfin while conducting their security analyses. Two cross-site scripting vulnerabilities were identified that...

read more

Security Advisory for GitLab

The usd HeroLab analysts examined GitLab, a service for version management of software projects, while conducting their security analyses. In the process, a vulnerability was...

read more

Security Advisories for Apache Tomcat

The analysts at usd HeroLab examined the popular Open Source Web Server Apache Tomcat as part of their security analyses. Two vulnerabilities were identified, which made it...

read more

Security Advisories for Filerun

The analysts at usd HeroLab examined Filerun as part of their security analyses. This revealed two vulnerabilities that allowed the deletion of arbitrary comments from other...

read more

Security Advisory for CleverReach

The analysts at usd HeroLab examined CleverReach as part of their security analyses. This revealed a vulnerability in the  Authentication Bypass Using an Alternate Path or...

read more

Security Advisories for CA Harvest

The analysts at usd HeroLab examined CA Harvest Software Change Manager as part of their security analyses. This revealed a vulnerability in the CSV export functionality, which...

read more

Security Advisory for Zulip <= v4.7

Our HeroLab analysts have performed a security analysis on the open-source collaboration software Zulip. They identified a server-side request forgery vulnerability that in older...

read more

Security Advisory for Grafana < v8.1.3

Our analysts at usd HeroLab discovered security vulnerabilities in Grafana's input validation while performing their pentests. Through these vulnerabilities it was possible to...

read more

Security Advisory 11/2021

The usd HeroLabs pentesters have identified vulnerabilities in various products of well-known manufacturers while conducting their security...

read more

Security Advisory 10/2021

The usd HeroLabs pentesters have identified a vulnerability in the product of Microsofts Exchange Server 2016 while conducting their security analyses. Specifically, this is a...

read more

Security Advisory 09/2021

The usd HeroLabs pentesters have identified a vulnerability in the products of the manufacturers Matrix42 and Themeco while conducting their security analyses. Specifically, this...

read more