Resources
>
Research

Research Blog

Stay up to date with the newest security advisories, vulnerability reports, and platform developments—keeping your products secure and compliant.

Featured research articles

Security Advisory: Unauthenticated Command Injection in Mitel IP Phones
Research
Nov 17, 2024
15
 min read

Security Advisory: Unauthenticated Command Injection in Mitel IP Phones

Discover critical vulnerabilities in Mitel SIP phones that allow unauthenticated command injection. Learn how outdated input parsing can expose your devices and why it's essential to scan firmware for security risks. Protect your network with our in-depth analysis and expert takeaways.

Denys Vozniuk
Denys Vozniuk
Security Consultant
Read More
The X in XFTP Stands For eXecute
Research
Jul 8, 2024
6
 min read

The X in XFTP Stands For eXecute

Find out how our platform enhances firmware security by identifying vulnerabilities & bugs in ICT products, ensuring compliance with DORA & NIS2 directive.

Read More
Security Advisory: Arbitrary Command Execution on TP-Link Archer C5400X
Research
May 26, 2024
5
 min read

Security Advisory: Arbitrary Command Execution on TP-Link Archer C5400X

Explore ONEKEY Research Lab's security advisory detailing a critical vulnerability in the TP-Link Archer C5400X router. Learn about the risks and recommended actions.

Read More
Security Advisory: Remote Code Execution in Ligowave Devices
Research
May 13, 2024
3
 min read

Security Advisory: Remote Code Execution in Ligowave Devices

Explore the security advisory detailing remote code execution vulnerabilities in Ligowave devices. Learn about the risks & recommended protections.

Read More
Previous
Next

All research articles

Security Advisory: Unauthenticated Command Injection in Mitel IP Phones
Research
Nov 17, 2024
15
 min read

Security Advisory: Unauthenticated Command Injection in Mitel IP Phones

Discover critical vulnerabilities in Mitel SIP phones that allow unauthenticated command injection. Learn how outdated input parsing can expose your devices and why it's essential to scan firmware for security risks. Protect your network with our in-depth analysis and expert takeaways.

Read More
The X in XFTP Stands For eXecute
Research
Jul 8, 2024
6
 min read

The X in XFTP Stands For eXecute

Find out how our platform enhances firmware security by identifying vulnerabilities & bugs in ICT products, ensuring compliance with DORA & NIS2 directive.

Read More
Security Advisory: Arbitrary Command Execution on TP-Link Archer C5400X
Research
May 26, 2024
5
 min read

Security Advisory: Arbitrary Command Execution on TP-Link Archer C5400X

Explore ONEKEY Research Lab's security advisory detailing a critical vulnerability in the TP-Link Archer C5400X router. Learn about the risks and recommended actions.

Read More
Security Advisory: Remote Code Execution in Ligowave Devices
Research
May 13, 2024
3
 min read

Security Advisory: Remote Code Execution in Ligowave Devices

Explore the security advisory detailing remote code execution vulnerabilities in Ligowave devices. Learn about the risks & recommended protections.

Read More
Security Advisory: Remote Code Execution in Delta Electronics DVW Devices
Research
Apr 23, 2024
7
 min read

Security Advisory: Remote Code Execution in Delta Electronics DVW Devices

Discover critical vulnerabilities in Delta Electronics' DVW routers, including command injections and buffer overflows, enabling remote code execution.

Read More
Spotting Silent Patches in OSS with Binary Static Analysis
Research
Apr 8, 2024
4
 min read

Spotting Silent Patches in OSS with Binary Static Analysis

Uncover silent patches in OSS with our binary static analysis. Understand the role of in-depth vulnerability management beyond CVE tracking.

Read More
Security Advisory: Remote Command Execution in Cisco Access Point WAP Products
Research
Mar 17, 2024
6
 min read

Security Advisory: Remote Command Execution in Cisco Access Point WAP Products

Learn about the vulnerabilities affecting Cisco's WAP371 and other Small Business Wireless APs, and the importance of binary static analysis.

Read More
Binary Static Analysis - The Final Frontier
Research
Mar 13, 2024
13
 min read

Binary Static Analysis - The Final Frontier

Uncover ONEKEY's new Binary Zero-Day Identification feature, designed to identify vulnerabilities in executable binaries. Click now to find out more.

Read More
Latest Developments in Unblob (3)
Research
Jan 10, 2024
9
 min read

Latest Developments in Unblob (3)

Discover the latest developments in UNBLOB. Explore FileSystem Sandboxing, UI enhancements, and advanced Pattern Identification in our latest blog post 👇️

Read More
check out white papers

check out white papers

Explore in-depth whitepapers on cybersecurity and compliance, designed to strengthen your product’s security and compliance.

Meet Us at Events

Meet Us at Events

Join us at industry-leading events and connect with our experts in person to learn how to enhance your cybersecurity and compliance strategies.

Insights from Our Blog

Insights from Our Blog

Get expert tips and industry updates.
Dive into our blog for practical advice, trends, and solutions that help you stay secure and compliant.

Ready to automate your Product Cybersecurity & Compliance?

Make cybersecurity and compliance efficient and effective with ONEKEY.

Book a Demo