usd Herolab Navigation
  • Our Services
  • About us
    • The Way We Work
    • Our Experts
    • Our Platforms and Tools
  • Security Research
    • Our Commitment
    • Security Advisories
    • Responsible Disclosure Policy
  • LabNews
  • Meet The Team
  • usd AG
  • Search
  • Our Services
  • About us
    • The Way We Work
    • Our Experts
    • Our Platforms and Tools
  • Security Research
    • Our Commitment
    • Security Advisories
    • Responsible Disclosure Policy
  • LabNews
  • Meet The Team
  • usd AG
  • Search

Tag Archive

Below you'll find a list of all posts that have been tagged as “zero-day vulnerabilities”

Security Advisory 01/2021

usd AG 29. January 2021 News, Security Advisories

usd HeroLab penetration testers have identified a path traversal vulnerability during security analyses. This vulnerability affects the product Mailoptimizer. In accordance with usd HeroLabs Responsible Disclosure Policy, the vendor has been notified of the existence of this vulnerability. In the …

Read more
Security Researchzero-day vulnerabilities

Security Advisories 10/2020

usd AG 27. October 2020 News, Security Advisories

usd HeroLab penetration testers have identified several security vulnerabilities during security analyses. These vulnerabilities affect the products OScommerce Phoenix CE, NeoPost Mail Accounting Software und SQL Server Management Studio. The following vulnerability classes were identified: Authenticated Remote Code Execution Cross …

Read more
Security Researchzero-day vulnerabilities

Security Advisory 09/2020

usd AG 29. September 2020 News, Security Advisories

usd HeroLab penetration testers have identified several security vulnerabilities during security analyses. These vulnerabilities affect the products Gophish and Net-SNMP. The following vulnerability classes were identified: Stored Cross-Site Scripting Non-persistent Self Cross-Site Scripting Clickjacking CSV Injection Insufficient Session Expiration Elevation …

Read more
Security Researchzero-day vulnerabilities

Security Advisory 07/2020

usd AG 15. July 2020 News, Security Advisories

usd HeroLab penetration testers have identified several security vulnerabilities during security analyses. These vulnerabilities affect the products Bitbucket Server and Concrete5 CMS. The following vulnerability classes were identified: Server-Side Request Forgery Unencrypted Service Code Injection In accordance with usd HeroLabs …

Read more
PentestSecurity Researchzero-day vulnerabilities

Security Advisory 06/2020

usd AG 18. June 2020 News, Security Advisories

usd HeroLab penetration testers have identified several security vulnerabilities during security analyses. These vulnerabilities affect the products Symantec Endpoint Protection (Broadcom), Gambio GX and NCP Secure Enterprise Client. The following vulnerability classes were identified: Privileged File Write Cross-Site-Request-Forgery (CSRF) Blind …

Read more
PentestSecurity Researchzero-day vulnerabilities

Security Advisory 04/2020

usd AG 29. April 2020 News, Security Advisories

usd HeroLab penetration testers have identified several security vulnerabilities during security analyses. These vulnerabilities affect the products Control-M/Agent, Chocolatey, Zencart, Starface UCC Client and Userlike Chat. The following vulnerability classes were identified: Cross-Site Scripting (XSS) Insufficient Filtering OS Command Injection …

Read more
PentestSecurity Researchzero-day vulnerabilities

Unknown Vulnerabilities – Responsibilities of the Finder

usd AG 18. February 2020 News

The security analysts of usd HeroLab frequently discover previously unknown security vulnerabilities in products as part of their daily work. For these zero-day vulnerabilities, no security patches (corrective changes applied to the product to remedy security gaps) have been made …

Read more
Responsible Disclosuresecurity advisoriesSecurity Researchzero-day vulnerabilities

Categories

  • News
  • Security Advisories

usd AG

  • Contact
  • Imprint
  • Privacy Protection
  • General Terms and Conditions

© 2020 usd AG

  • Report a vulnerability or bug
  • Code of Ethics

Follow us: Bild Bild Bild Bild Bild Bild Bild

LabNews

Security Advisory 03/2021

7. April 2021

Security Advisory 02/2021

26. February 2021

Security Advisory 01/2021

29. January 2021

  • Contact
  • Imprint
  • Privacy Protection
  • General Terms and Conditions