Certitude Blog – Certitude Consulting Blog

DP API encryption ineffective in Windows containers: Publicly Available Cryptographic Keys (CVE-2021-1645)

Written by Marc Nimmerrichter on 16.03.202118.05.2021

We recently discovered a vulnerability in the DP API key management of Windows containers. This vulnerability was assigned CVE-2021-1645 by Microsoft [1] and ...

CSRF in JSF 2.0: Predicting CSRF Tokens for Apache MyFaces

Written by Wolfgang Ettlinger on 19.02.202118.05.2021

JavaServer Faces (JSF) is a commonly used server-side web framework. Developers appreciate its relative ease of use while security engineers appreciate its ready-made ...

Citrix ADC & Citrix Gateway Vulnerability CVE-2020-8300

Written by Wolfgang Ettlinger on 09.06.202109.06.2021

We have identified an issue in Citrix ADC and Citrix Gateway and worked with Citrix to resolve it. Citrix has released a patch that addresses the issue as well as an ...

OÖ Nachrichten – 14.05.2021

Written by Ulrich Kallausch on 14.05.202118.05.2021

This article is only available ...

Die Presse – 11.05.2021

Written by Ulrich Kallausch on 11.05.202112.05.2021

This article is only available ...

Kurier – 11.05.2021

Written by Ulrich Kallausch on 11.05.202111.05.2021

This article is only available ...