Vulnerability

ClamAV Critical Patch Review

February 21, 2023 No Comments

In this technical deep dive, we explore the underlying issues fixed by the recent critical patch released by ClamAV.

ONEKEY Security Advisory: Security vulnerability in binwalk Blog Overview Banner

Security Advisory: Remote Command Execution in binwalk

January 31, 2023 No Comments

We have identified a path traversal vulnerability in binwalk that could be abused to gain remote command execution.

Advisory: FESTO: CECC-X-M1 – Command Injection Vulnerabilities

July 7, 2022 No Comments

To evaluate and strengthen the automated vulnerability detection capabilities of ONEKEY, we frequently download and analyze firmware images from a variety of vendors. This is how we stumbled upon the CECC-X-M1 product line, an industrial controller manufactured by FESTO.

Misconfiguration in telecom router leaks 30,000 patient data

December 10, 2019 No Comments

Comment by Rainer Richter, Director Channels, SEC Technologies “The Internet of Things is a curse and a blessing at the same time: while networked devices