[FD] CVE-2024-55447: Access Control in Paxton Net2 software (update)

2025-02-10 Thread Jeroen Hermans via Fulldisclosure
CloudAware Security Advisory CVE-2024-55447: Potential PII leak and incorrect access control in Paxton Net2 software Summary Insecure backend datab

[FD] Disclosure Yealink Cloud vulnerabilities

2025-06-23 Thread Jeroen Hermans via Fulldisclosure
Dear all, ---Abstract--- Yealink RPS contains several vulnerabilities that can lead to leaking of PII and/or MITM attacks. Some vulnerabilities are unpatched even after disclosure to the manufacturer. ---/Abstract--- We are Stefan Gloor and Jeroen Hermans. We are independent computer securit