nd us your application https://sec-consult.com/career/
Interested in improving your cyber security with the experts of SEC Consult?
Contact our local offices https://sec-consult.com/contact/
~~~
Mail: security-research at sec-co
~
Mail: security-research at sec-consult dot com
Web: https://www.sec-consult.com
Blog: https://blog.sec-consult.com
Twitter: https://twitter.com/sec_consult
EOF Sandro Einfeldt / @2024
___
Sent through the F
r customers obtain the most current information about vulnerabilities
and valid recommendation about the risk profile of new technologies.
~~~
Interested to work with the experts of SEC Consult?
Send us your application https://sec-c
Interested to work with the experts of SEC Consult?
Send us your application https://sec-consult.com/career/
Interested in improving your cyber security with the experts of SEC Consult?
Contact our local offices https://sec-consult.com/contact/
~~~
rested to work with the experts of SEC Consult?
Send us your application https://sec-consult.com/career/
Interested in improving your cyber security with the experts of SEC Consult?
Contact our local offices https://sec-consult.com/contact/
s of SEC Consult?
Send us your application https://sec-consult.com/career/
Interested in improving your cyber security with the experts of SEC Consult?
Contact our local offices https://sec-consult.com/contact/
~~~
Mail: securit
mation about vulnerabilities
and valid recommendation about the risk profile of new technologies.
~~~
Interested to work with the experts of SEC Consult?
Send us your application https://sec-consult.com/career/
Interested in improving your cyber security with the experts of SEC
Consult?
Contact our local offices https://sec-consult.com/contact/
~~~
Mail: security-research at sec-consult dot com
Web: https://www.sec-consult.com
Blog: https://blog.sec-consult.com
Twitter: https://twitter.com/sec_consult
E
valuation of new offensive and defensive technologies for our customers.
Hence our customers obtain the most current information about vulnerabilities
and valid recommendation about the risk profile of new technologies.
~~~
Interested to work wit
Interested to work with the experts of SEC Consult? Send us your application
https://sec-consult.com/career/
Interested in improving your cyber security with the experts of SEC Consult?
Contact our local offices https://sec-cons
our application https://sec-consult.com/career/
Interested in improving your cyber security with the experts of SEC Consult?
Contact our local offices https://sec-consult.com/contact/
~~~
Mail: security-research at sec-consult d
SEC Consult Vulnerability Lab Security Advisory < 20230829-0 >
===
title: Reflected Cross-Site Scripting (XSS)
product: PTC - Codebeamer (ALM Solution)
vulnerable version: <=22.10-SP7, <=22.04-SP5, <=2
ation https://sec-consult.com/career/
Interested in improving your cyber security with the experts of SEC Consult?
Contact our local offices https://sec-consult.com/contact/
~~~
Mail: security-research at sec-consult dot com
Web: ht
end us your application https://sec-consult.com/career/
Interested in improving your cyber security with the experts of SEC Consult?
Contact our local offices https://sec-consult.com/contact/
~~~
Mail: secu
a set of
high-impact
implementation bugs and design flaws were identified by SEC Consult
Vulnerability
Lab security researcher and SAP security expert Fabian Hagg. Technical details
about the research results are presented during the annual Troopers Security
Conference 2023 in Heidelberg, G
hnologies.
~~~
Interested to work with the experts of SEC Consult?
Send us your application https://sec-consult.com/career/
Interested in improving your cyber security with the experts of SEC Consult?
Contact our local offices h
ich mitigate the identified
vulnerabilities.
Vulnerability 1) is fixed in versions or higher: 7.22, 8.3
Vulnerability 2) is fixed in versions or higher: 6.22, 7.18, 8.0
Vulnerability 3) is fixed in versions or higher: 6.23, 7.19, 8.0
The patches can be downloaded from the vendor's website wh
ttps://sec-consult.com/career/
Interested in improving your cyber security with the experts of SEC Consult?
Contact our local offices https://sec-consult.com/contact/
~~~
Mail: security-research at sec-consult dot com
Web
~
Interested to work with the experts of SEC Consult?
Send us your application https://sec-consult.com/career/
Interested in improving your cyber security with the experts of SEC Consult?
Contact our local offices https://sec-consult.com/c
s and valid recommendation about the risk profile of new
technologies.
~~~
Interested to work with the experts of SEC Consult?
Send us your application https://sec-consult.com/career/
Interested in improving your cyber
an atos business
Europe | Asia | North America
About SEC Consult Vulnerability Lab
The SEC Consult Vulnerability Lab is an integrated part of SEC Consult, part
of Eviden, an atos business. It ensures the continued knowledge gain of SEC
Consult in the field of network and application security to st
_
¯¯¯\__/ ༼ つ ◕_◕ ༽つ (ง'̀-'́)ง(╯°□°)╯︵ ┻━┻ ヽ(´ー`)ノ \__/¯¯
¯
Product: sipXcom sipXopenfire
Vendor: CoreDial
Name: "sipXcom sipXopenfire XMP
rts of SEC Consult?
Send us your application https://sec-consult.com/career/
Interested in improving your cyber security with the experts of SEC Consult?
Contact our local offices https://sec-consult.com/contact/
~~~
Mail: security-
.
Hence our customers obtain the most current information about vulnerabilities
and valid recommendation about the risk profile of new technologies.
~~~
Interested to work with the experts of SEC Consult?
Send us your application https://sec-consult.com/career/
Interested in improving your cyber se
* CVE-2022-45928: 16.2.2 - 22.3
Vendor contact timeline:
2022-10-07: Vendor contacted via secur...@opentext.com
2022-10-07: Vendor acknowledged the email and is reviewing the reports
2022-11-18: Vendor confirms all vulnerabilities and is working on a patch aimed
to
---
2022-10-07: Vendor contacted via secur...@opentext.com
2022-10-07: Vendor acknowledged the email and is reviewing the reports
2022-11-18: Vendor confirms all vulnerabilities and is working on a patch aimed
to
be released in November
2022-11-24: Vendor delays t
fensive and defensive technologies for our customers.
Hence our customers obtain the most current information about vulnerabilities
and valid recommendation about the risk profile of new technologies.
~~~
Interested to work with the
to work with the experts of SEC Consult?
Send us your application https://sec-consult.com/career/
Interested in improving your cyber security with the experts of SEC Consult?
Contact our local offices https://sec-consult.com/contact/
~~~
Mail: security-research at
with the experts of SEC Consult?
Contact our local offices https://sec-consult.com/contact/
~~~
Mail: security-research at sec-consult dot com
Web: https://www.sec-consult.com
Blog: http://blog.sec-consult.com
Twitter:
new technologies.
~~~
Interested to work with the experts of SEC Consult?
Send us your application https://sec-consult.com/career/
Interested in improving your cyber security with the experts of SEC Consult?
Contact our local off
SEC Consult Vulnerability Lab Security Advisory < 20221206-0 >
===
title: Multiple critical vulnerabilities
product: ILIAS eLearning platform
vulnerable version: <= 7.15
fixed version: 7.16
ther security issues.
The research has also been presented at various security conferences such as
hardwear.io, named "Self-labeling electronic shelf labels".
Vulnerability overview/description:
---
1) Replay Attack
The displayed information on the price ta
our cyber security with the experts of SEC Consult?
Contact our local offices https://sec-consult.com/contact/
~~~
Mail: security-research at sec-consult dot com
Web: https://www.sec-consult.com
Blog: http://blog.sec-c
SEC Consult Vulnerability Lab Security Advisory < 20221110-0 >
===
title: HTML Injection
product: BMC Remedy ITSM-Suite
vulnerable version: 9.1.10 (= 20.02 in new versioning scheme)
fixed versio
at patching
customers will take
until end of July.
2022-09-02: Asking about CVE numbers and if all customers are patched.
2022-09-05: Some customers are not yet patched. Current version is phased out
by the
end of september. All customers will have to upgrade until then.
SEC Consult
will req
experts of SEC Consult?
Send us your application https://sec-consult.com/career/
Interested in improving your cyber security with the experts of SEC Consult?
Contact our local offices https://sec-consult.com/contact/
~~~
Mail: securi
d recommendation about the risk profile of new technologies.
~~~
Interested to work with the experts of SEC Consult?
Send us your application https://sec-consult.com/career/
Interested in improving your cyber security with the e
erts of SEC Consult?
Send us your application https://sec-consult.com/career/
Interested in improving your cyber security with the experts of SEC Consult?
Contact our local offices https://sec-consult.com/contact/
~~~
Mail:
- Onapsis blogpost:
https://onapsis.com/blog/sap-security-patch-day-april-2022-focus-spring4shell-an
d-sap-mii
- CVE Mitre:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27657
- Vendor Patch:
https://launchpad.support.sap.com/#/notes/3159091
## About Onapsis Research Labs
Onapsis Research
-focused-run-affec
ted-several-vulnerabilities
- CVE Mitre:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22547
- Vendor Patch:
https://launchpad.support.sap.com/#/notes/3147102
## About Onapsis Research Labs
Onapsis Research Labs provides the industry analysis of key security
issues that
57089
## About Onapsis Research Labs
Onapsis Research Labs provides the industry analysis of key security
issues that impact business-critical systems and applications.
Delivering frequent and timely security and compliance advisories with
associated risk levels, Onapsis Research Labs combine in-
Onapsis Research Labs
Onapsis Research Labs provides the industry analysis of key security
issues that impact business-critical systems and applications.
Delivering frequent and timely security and compliance advisories with
associated risk levels, Onapsis Research Labs combine in-depth knowledge
?name=CVE-2022-24399
- Vendor Patch:
https://launchpad.support.sap.com/#/notes/3147283
## About Onapsis Research Labs
Onapsis Research Labs provides the industry analysis of key security
issues that impact business-critical systems and applications.
Delivering frequent and timely securit
ologies.
~~~
Interested to work with the experts of SEC Consult?
Send us your application https://sec-consult.com/career/
Interested in improving your cyber security with the experts of SEC Consult?
Contact our local offices https://sec-consult.com/contact/
~~
ity with the experts of SEC Consult?
Contact our local offices https://sec-consult.com/contact/
~~~
Mail: security-research at sec-consult dot com
Web: https://www.sec-consult.com
Blog: http://blog.sec-consult.
improving your cyber security with the experts of SEC Consult?
Contact our local offices https://sec-consult.com/contact/
~~~
Mail: security-research at sec-consult dot com
Web: https://www
SEC Consult Vulnerability Lab Security Advisory < 20220608-0 >
===
title: Stored Cross-Site Scripting & Unsafe Java Deserializiation
product: Gentics CMS
vulnerable version: 5.36.29, see section below
https://sec-consult.com/career/
Interested in improving your cyber security with the experts of SEC Consult?
Contact our local offices https://sec-consult.com/contact/
~~~
Mail: security-research at sec-consult dot com
Web: http
he experts of SEC Consult?
Send us your application https://sec-consult.com/career/
Interested in improving your cyber security with the experts of SEC Consult?
Contact our local offices https://sec-consult.com/contact/
~~~
our local offices https://sec-consult.com/contact/
~~~
Mail: security-research at sec-consult dot com
Web: https://www.sec-consult.com
Blog: http://blog.sec-consult.com
Twitter: https://twitter.com/sec_consult
es for our customers.
Hence our customers obtain the most current information about vulnerabilities
and valid recommendation about the risk profile of new technologies.
~~~
Interested to work with the experts of SEC Consult?
Send us your application https://sec-consult.c
erested in improving your cyber security with the experts of SEC Consult?
Contact our local offices https://sec-consult.com/contact/
~~~
Mail: security-research at sec-consult dot com
Web: https://www.sec-c
~
Interested to work with the experts of SEC Consult?
Send us your application https://sec-consult.com/career/
Interested in improving your cyber security with the experts of SEC Consult?
Contact our local offices https://sec-consult.com/contact/
~~~
lication https://sec-consult.com/career/
Interested in improving your cyber security with the experts of SEC Consult?
Contact our local offices https://sec-consult.com/contact/
~~~
Mail: security-research at sec-consult dot c
://onapsis.com/blog/sap-security-patch-day-july-2021-serious-vulnerabilities-sap-netweaver-java-fixed
- CVE Mitre: https://nvd.nist.gov/vuln/detail/CVE-2021-33670
- Vendor Patch: https://launchpad.support.sap.com/#/notes/3056652
## About Onapsis Research Labs
Onapsis Research Labs provides the industry
n/cvename.cgi?name=CVE-2021-38162
- Vendor Patch:
https://launchpad.support.sap.com/#/notes/3080567
## About Onapsis Research Labs
Onapsis Research Labs provides the industry analysis of key security
issues that impact business-critical systems and applications.
Delivering frequent and timely security and com
Interested to work with the experts of SEC Consult?
Send us your application https://sec-consult.com/career/
Interested in improving your cyber security with the experts of SEC Consult?
Contact our local offices https://sec-consult.com/contact/
~~~~
by: SEC Consult Vulnerability Lab
This vulnerability was discovered during the research
cooperation initiative "OT Cyber Security Lab" between
Verbund AG and SEC Consult Group.
Stef
-
def decrypt_zyxel_encrypt(input):
key=bytearray.fromhex(
'XX')
iv=bytearray.fromhex('')
input=input.replace('_encrypt_','')
decoded = b64decode(inp
/nightwatchcybersecurity/gb_testrepo_reset
TOOLING
There are plenty of existing tools out there that can manipulate git
repositories, scan them for secrets and remove specific commits.
During our research, we used git for checking out repositories,
git-filter-repo for figuring out the delta
oving your cyber security with the experts of SEC Consult?
Contact our local offices https://sec-consult.com/contact/
~~~
Mail: research at sec-consult dot com
Web: https://www.sec-consult.com
Blog: http://blog.sec-consult.co
onsult.com
===
Vendor description:
---
"Founded in 2004, Shopmetrics is a company that offers technology platform
solutions to mystery shopping and market research providers worldwide. Today
Shopmetrics is a global organization with offices in North America and Europe.
Wi
~~
Interested to work with the experts of SEC Consult?
Send us your application https://sec-consult.com/career/
Interested in improving your cyber security with the experts of SEC Consult?
Contact our local offices https://sec-consult.com/contact/
~~
re discovered during the research
cooperation initiative "OT Cyber Security Lab" between
Verbund AG and SEC Consult Group.
Gerhard Hechenberger (Office Vienna)
Steffen Robertz (Office Vienna)
i-bin/cvename.cgi?name=CVE-2021-37531
- Vendor Patch:
https://launchpad.support.sap.com/#/notes/3081888
## About Onapsis Research Labs
Onapsis Research Labs provides the industry analysis of key security
issues that impact business-critical systems and applications.
Delivering frequent and t
Note fixing the issue
## References
- Onapsis blogpost:
https://www.onapsis.com/blog/sap-security-patch-day-september-2021
- CVE Mitre:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-38177
- Vendor Patch:
https://launchpad.support.sap.com/#/notes/3051787
## About Onapsis Research Labs
tch:
https://launchpad.support.sap.com/#/notes/3076399
## About Onapsis Research Labs
Onapsis Research Labs provides the industry analysis of key security
issues that impact business-critical systems and applications.
Delivering frequent and timely security and compliance advisories with
associated risk level
issue.
## References
- Onapsis blogpost:
https://www.onapsis.com/blog/sap-security-patch-day-august-2021
- CVE Mitre:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-33705
- Vendor Patch:
https://launchpad.support.sap.com/#/notes/3074844
## About Onapsis Research Labs
Onapsis Research
## About Onapsis Research Labs
Onapsis Research Labs provides the industry analysis of key security
issues that impact business-critical systems and applications.
Delivering frequent and timely security and compliance advisories with
associated risk levels, Onapsis Research Labs combine in-depth kno
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-33702
- Vendor Patch:
https://launchpad.support.sap.com/#/notes/3059764
## About Onapsis Research Labs
Onapsis Research Labs provides the industry analysis of key security
issues that impact business-critical systems and applications.
Deliv
tion testing and
the evaluation of new offensive and defensive technologies for our customers.
Hence our customers obtain the most current information about vulnerabilities
and valid recommendation about the risk profile of new technologies.
~~~~~
ntact our local offices https://sec-consult.com/contact/
~~~
Mail: research at sec-consult dot com
Web: https://www.sec-consult.com
Blog: http://blog.sec-consult.com
Twitter: https://twitter.com/sec_consult
EOF Mario Keck / @2022
~~~
Interested to work with the experts of SEC Consult?
Send us your application https://sec-consult.com/career/
Interested in improving your cyber security with the experts of SEC Consult?
Contact our local offices https://sec-consult.co
ity with the experts of SEC Consult?
Contact our local offices https://sec-consult.com/contact/
~~~
Mail: research at sec-consult dot com
Web: https://www.sec-consult.com
Blog: http://blog.sec-consult.com
Twitter: https://twitter.co
## About Onapsis Research Labs
Onapsis Research Labs provides the industry analysis of key security
issues that impact business-critical systems and applications.
Delivering frequent and timely security and compliance advisories with
associated risk levels, Onapsis Research Labs combine in-depth
/cvename.cgi?name=CVE-2021-27626
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27627
- Vendor Patch:
https://launchpad.support.sap.com/#/notes/3021050
## About Onapsis Research Labs
Onapsis Research Labs provides the industry analysis of key security
issues that impact business-critical
://launchpad.support.sap.com/#/notes/3020209
## About Onapsis Research Labs
Onapsis Research Labs provides the industry analysis of key security
issues that impact business-critical systems and applications.
Delivering frequent and timely security and compliance advisories with
associated risk levels, Onapsis
-2021-27632
- Vendor Patch:
https://launchpad.support.sap.com/#/notes/3020104
## About Onapsis Research Labs
Onapsis Research Labs provides the industry analysis of key security
issues that impact business-critical systems and applications.
Delivering frequent and timely security and compliance
://launchpad.support.sap.com/#/notes/3053066
## About Onapsis Research Labs
Onapsis Research Labs provides the industry analysis of key security
issues that impact business-critical systems and applications.
Delivering frequent and timely security and compliance advisories with
associated risk levels, Onapsis
/cvename.cgi?name=CVE-2021-27607
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27628
- Vendor Patch:
https://launchpad.support.sap.com/#/notes/3021197
## About Onapsis Research Labs
Onapsis Research Labs provides the industry analysis of key security
issues that impact business-critical systems
note 2890213 fixing this issue
## References
- Onapsis blogpost: https://onapsis.com/blog/sap-security-notes-september-2020
- CVE Mitre: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6207
- Vendor Patch: https://launchpad.support.sap.com/#/notes/2890213
## About Onapsis Research Labs
://launchpad.support.sap.com/#/notes/2974774
## About Onapsis Research Labs
Onapsis Research Labs provides the industry analysis of key security
issues that impact business-critical systems and applications.
Delivering frequent and timely security and compliance advisories with
associated risk levels
psis.com/blog/sap-security-notes-march-2021
* CVE Mitre: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21480
* Vendor Patch: https://launchpad.support.sap.com/#/notes/3022622
## About Onapsis Research Labs
Onapsis Research Labs provides the industry analysis of key security
issues tha
submission.
- 12/08/2020 - SAP releases note.
## References
- Onapsis blogpost: https://onapsis.com/blog/sap-security-notes-december-2020
- CVE Mitre: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26830
- Vendor Patch: https://launchpad.support.sap.com/#/notes/2983204.
## About O
ve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26837
- Vendor Patch: https://launchpad.support.sap.com/#/notes/2983204.
## About Onapsis Research Labs
Onapsis Research Labs provides the industry analysis of key security
issues that impact business-critical systems and applications.
Delivering
rg/cgi-bin/cvename.cgi?name=CVE-2020-6369
- Vendor Patch: https://launchpad.support.sap.com/#/notes/2971638
## About Onapsis Research Labs
Onapsis Research Labs provides the industry analysis of key security
issues that impact business-critical systems and applications.
Delivering frequent and timely se
E Mitre: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6364
- Vendor Patch: https://launchpad.support.sap.com/#/notes/2969828
## About Onapsis Research Labs
Onapsis Research Labs provides the industry analysis of key security
issues that impact business-critical systems and applications.
Deliverin
ote fixing the issue. Vulnerability is
now closed
## References
* Onapsis blogpost: https://onapsis.com/blog/sap-security-notes-november-2020
* CVE Mitre: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26809
* Vendor Patch: https://launchpad.support.sap.com/#/notes/2975189
## About Onapsis Re
26811
* Vendor Patch: https://launchpad.support.sap.com/#/notes/2975170
## About Onapsis Research Labs
Onapsis Research Labs provides the industry analysis of key security
issues that impact business-critical systems and applications.
Delivering frequent and timely security and compliance adviso
psis blogpost: https://onapsis.com/blog/sap-security-notes-december-2020
- CVE Mitre: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26836
- Vendor Patch: https://launchpad.support.sap.com/#/notes/2938650
## About Onapsis Research Labs
Onapsis Research Labs provides the industry anal
--
IPS Community Suite <= 4.5.4.2 (previewBlock) PHP Code Injection
Vulnerability
--
[-] Software Link:
https://invisioncommunity.com
[-] A
(Original blog post here:
https://wwws.nightwatchcybersecurity.com/2021/04/25/supply-chain-attacks-via-github-com-releases/)
SUMMARY
Release functionality on GitHub.com allows modification of assets
within a release by any project collaborator. This can occur after the
release is published, and w
IoT Inspector Research Lab Advisory IOT-20210408-0
~~~
title: Multiple vulnerabilities
vendor/product: Fibaro Home Center Light / Fibaro Home Center 2
https://www.fibaro.com
tre: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26820
* Vendor Patch: https://launchpad.support.sap.com/#/notes/2979062
## About Onapsis Research Labs
Onapsis Research Labs provides the industry analysis of key security issues
that impact business-critical systems and applications.
sap.com/#/notes/2947895
## About Onapsis Research Labs
Onapsis Research Labs provides the industry analysis of key security issues
that impact business-critical systems and applications.
Delivering frequent and timely security and compliance advisories with
associated risk levels, Onapsis Resear
020-6234
- Vendor Patch: https://launchpad.support.sap.com/#/notes/2902645
## About Onapsis Research Labs
Onapsis Research Labs provides the industry analysis of key security
issues that impact business-critical systems and applications.
Delivering frequent and timely security and compliance advisories with
associated
/cvename.cgi?name=CVE-2020-6207
- Vendor Patch: https://launchpad.support.sap.com/#/notes/2890213
## About Onapsis Research Labs
Onapsis Research Labs provides the industry analysis of key security
issues that impact business-critical systems and applications.
Delivering frequent and timely security and
ExpressionEngine <= 6.0.2 (Translate::save) PHP Code Injection
Vulnerability
[-] Software Link:
https://expressionengine.com/
[-] Affecte
IoT Inspector Research Lab Security Advisory IOT-20210311-0
~~~
title: Authenticated Command Injection in D-Link DIR-3060 Web
Interface
vendor/product: D-Link DIR-3060 (https
--
docsify <= 4.11.6 DOM-based Cross-Site Scripting Vulnerability
--
[-] Software Link:
https://docsify.js.org/
[-] Affected Versions:
Version 4.11.6 and prior versions.
1 - 100 of 387 matches
Mail list logo
