Advisories archive

SSD Advisory – NETGEAR D7000 Authentication Bypass
TL;DR Find out how a vulnerability in NETGEAR D7000 device allows remote unauthenticated users to reveal the 'admin' password used
SSD Advisory – Samsung S10+/S9 kernel 4.14 (Android 10) Kernel Function Address (.text) and Heap Address Information Leak
TL;DR Find out how a vulnerability discovered in Samsung S10+/S9 kernel allows leaking of sensitive function address information. Vulnerability Summary
SSD Advisory – IP-Board Stored XSS to RCE Chain
TL;DR Find out how an XSS in IP-Board can be leveraged into an remote code execution. Vulnerability Summary CVE CVE-2021-39249,
SSD Advisory – aaPanel CSWH to RCE
TL;DR Find out how a CSWH hijacking vulnerability in aaPanel allows remote attackers to cause an authenticated user to execute
SSD Advisory – SmarterMail XSS
TL;DR Find out how a cross site scripting vulnerability in SmarterMail allows remote attackers to obtain the JWT token used
SSD Advisory – Ivanti Avalanche Directory Traversal
TL;DR Find out how a directory traversal vulnerability in Ivanti Avalanche allows remote unauthenticated user to access files that reside
SSD Advisory – VoIPmonitor UnAuth RCE
TL;DR Find out how a vulnerability in VoIPmonitor allows an unauthenticated attacker to execute arbitrary code. Vulnerability Summary VoIPmonitor is
SSD Advisory – TG8 Firewall PreAuth RCE and Password Disclosure
TL;DR Find out how vulnerabilities in TG8 Firewall allows remote unauthenticated users to execute arbitrary code on the remote device
SSD Advisory – NETGEAR Nighthawk R7000 httpd PreAuth RCE
TL;DR Find out how a vulnerability in NETGEAR R7000 allows an attacker to run arbitrary code without requiring authentication with
SSD Advisory – Hongdian H8922 Multiple Vulnerabilities
TL;DR Find out how multiple vulnerabilities in Hongdian H8922 allow an attacker to run arbitrary commands on the device with