Advisories archive

SSD Advisory – ManageEngine OpManager Unauthenticated Access API Key Access leads to RCE
A vulnerability in ManageEngine OpManager allows a remote attacker to leak the API key of the product (administrative level API
SSD Advisory – Netsweeper PreAuth RCE
Netsweeper provides real-time content monitoring and reporting for early intervention. One of our researchers had recently managed to perform remote
SSD Advisory – Cisco AnyConnect Privilege Elevation through Path Traversal
Vulnerability SummaryThe update functionality of the Cisco AnyConnect Secure Mobility Client for Windows is affected by a path traversal vulnerability
SSD Advisory – Ruckus IoT vRIoT Server Vulnerabilities
Vulnerability SummaryThe Ruckus IoT Suite is a collection of network hardware and software infrastructure used to enable multi-standard Internet of
SSD Advisory – Horde Groupware Webmail Edition Remote Code Execution
Vulnerability SummaryThe Horde project comprises of several standalone applications and libraries. The Horde Groupware Webmail Edition suite bundles several of
SSD Advisory – FreeBSD Use After Free due to Race Condition
Vulnerability SummaryIn FreeBSD there is a cryptographic device module called cryptodev which is accessible by any user on the system.
SSD Advisory – Synology DSM Remote Command Injection
IntroductionNetwork-attached storage devices allow multiple users and heterogeneous client devices to retrieve data from centralized disk capacity. These NAS stations
SSD Advisory – Intel Windows Graphics Driver Buffer Overflow to Privilege Escalation
IntroductionSince 2014, Intel is dominating the PC market as the leading graphics chip vendor worldwide with ~70% market share. With
SSD Advisory – Intel Windows Graphics Driver Out of Bounds Read Denial of Service
IntroductionSince 2014, Intel is dominating the PC market as the leading graphics chip vendor worldwide with ~70% market share. With
SSD Advisory – iOS Jailbreak via Sandbox Escape and Kernel R/W leading to RCE
Introduction:Each year, as part of TyphoonCon; our All Offensive Security Conference, we are offering cash prizes for vulnerabilities and exploitation