Advisories archive

SSD Advisory – QNAP Pre-Auth CGI_Find_Parameter RCE
TL;DR Find out how a memory corruption vulnerability can lead to a pre-auth remote code execution on QNAP QTS's Surveillance
SSD Advisory – DD-WRT UPNP Buffer Overflow
TL;DR Find out how a vulnerability in DD-WRT allows an unauthenticated attacker to overflow an internal buffer used by UPNP
SSD Advisory – VestaCP LPE Vulnerabilities
TL;DR Find out how multiple vulnerabilities in VestaCP allow an authenticated attacker to elevate his access to root privileges. Vulnerability
SSD Advisory – GNU GRUB Command Injection
TL;DR Find out how a vulnerability in GNU GRUB allows users on a Linux system to inject commands into the
SSD Advisory – Yealink DM Pre Auth ‘root’ level RCE
TL;DR Find out how multiple vulnerabilities in Yealink DM (Device Management) allow an unauthenticated attacker to run arbitrary commands on
SSD Advisory – NetMotion Mobility Server Multiple Deserialization of Untrusted Data Lead to RCE
TL;DR Find out how multiple vulnerabilities in NetMotion Mobility Server allow an unauthenticated attacker to run arbitrary code on the
SSD Advisory – IBM AIX snmpd ASN.1 OID parsing stack overflow
TL;DR Find out how a vulnerability in IBM AIX's snmpd service allows an unauthenticated attacker to trigger a stack overflow
SSD Advisory – Auth Bypass and RCE in Infinite WP Admin Panel
TL;DR Find out how a vulnerability in Infinite WP's password reset mechanism allows an unauthenticated user to become authenticated and
SSD Advisory – Windows Installer Elevation of Privileges Vulnerability
TL;DR Vulnerability in Windows Installer allows local users to gain elevated SYSTEM privileges in Windows. Vulnerability Summary Windows Installer is
SSD Advisory – phpCollab Unauth RCE
TL;DR Find out how a vulnerability in phpCollab allows an unauthenticated user to reach RCE abilities and run code as