RCE in GridPro Request Management for Windows Azure Pack (CVE-2021-40371)
We recently discovered a vulnerability in GridPro Request Management versions <=2.0.7905 for Windows Azure Pack by GridPro Software. The vulnerability was ...
Read MoreArticles
Citrix ADC & Citrix Gateway Vulnerability CVE-2020-8300
We have identified an issue in Citrix ADC and Citrix Gateway and worked with Citrix to resolve it. Citrix has released a patch that addresses the issue as well as an ...
Read More
DP API encryption ineffective in Windows containers: Publicly Available Cryptographic Keys (CVE-2021-1645)
We recently discovered a vulnerability in the DP API key management of Windows containers. This vulnerability was assigned CVE-2021-1645 by Microsoft [1] and ...
Read More
CSRF in JSF 2.0: Predicting CSRF Tokens for Apache MyFaces
JavaServer Faces (JSF) is a commonly used server-side web framework. Developers appreciate its relative ease of use while security engineers appreciate its ready-made ...
Read More
How malware infects the company over private devices
Security situation worsened by home office In the past year, many organizations were suddenly faced with the challenge of providing employees with a home office ...
Read More