NCC Group Research Blog
Technical Advisory – SonicWall SMA 100 Series – Multiple Unauthenticated Heap-based and Stack-based Buffer Overflow (CVE-2021-20045)
4 months 2 weeks ago
Technical Advisory – Shop app sends pasteboard data to Shopify’s servers
4 months 2 weeks ago
Technical Advisory – SonicWall SMA 100 Series – Heap-Based Buffer Overflow (CVE-2021-20043)
4 months 2 weeks ago
Technical Advisory – playSMS Pre-Authentication Remote Code Execution (CVE-2020-8644)
4 months 2 weeks ago
Technical Advisory – Pulse Connect Secure – RCE via Template Injection (CVE-2020-8243)
4 months 2 weeks ago
Technical Advisory – ParcelTrack sends all pasteboard data to ParcelTrack’s servers on startup
4 months 2 weeks ago
Technical Advisory – play-pac4j Authentication rule bypass
4 months 2 weeks ago
Technical Advisory – OpenJDK – Weak Parsing Logic in java.net.InetAddress and Related Classes
4 months 2 weeks ago
Technical Advisory – OpenOffice.org Multiple Memory Corruption Vulnerabilities
4 months 2 weeks ago
Technical Advisory – NXP i.MX SDP_READ_DISABLE Fuse Bypass (CVE-2022-45163)
4 months 2 weeks ago
Technical Advisory – Open5GS Stack Buffer Overflow During PFCP Session Establishment on UPF (CVE-2021-41794)
4 months 2 weeks ago
Technical Advisory – New York State Excelsior Pass Vaccine Passport Scanner App Sends Data to a Third Party not Specified in Privacy Policy
4 months 2 weeks ago
Technical Advisory – Nullsoft Scriptable Installer System (NSIS) – Insecure Temporary Directory Usage
4 months 2 weeks ago
Technical Advisory – Multiple Vulnerabilities in the Galaxy App Store (CVE-2023-21433, CVE-2023-21434)
4 months 2 weeks ago
Technical Advisory – Multiple Vulnerabilities in U-Boot (CVE-2022-30790, CVE-2022-30552)
4 months 2 weeks ago
Technical Advisory – New York State Excelsior Pass Vaccine Passport Credential Forgery
4 months 2 weeks ago
Technical Advisory – Multiple Vulnerabilities in Connectize G6 AC2100 Dual Band Gigabit WiFi Router (CVE-2023-24046, CVE-2023-24047, CVE-2023-24048, CVE-2023-24049, CVE-2023-24050, CVE-2023-24051, CVE-2023-24052)
4 months 2 weeks ago
Technical Advisory – Multiple vulnerabilities in Nuki smart locks (CVE-2022-32509, CVE-2022-32504, CVE-2022-32502, CVE-2022-32507, CVE-2022-32503, CVE-2022-32510, CVE-2022-32506, CVE-2022-32508, CVE-2022-32505)
4 months 2 weeks ago
Technical Advisory – macOS Installer Local Root Privilege Escalation (CVE-2020-9817)
4 months 2 weeks ago
Checked
1 hour 33 minutes ago