Research

Security Advisory: Multiple Vulnerabilities in Phoenix Contact Routers

March 28, 2023

Phoenix Contact routers were found to be vulnerable to high-risk authenticated command injection and path traversal attacks, allowing attackers to execute arbitrary commands with elevated privileges.

ONEKEY Security Advisory NetModule industrial routers vulnerable_Blog-Overview-Banner

Security Advisory: Multiple Vulnerabilities in NetModule Routers

February 24, 2023

We’ve automatically identified vulnerabilities affecting multiple NetModule industrial routers using ONEKEY’s platform and reported it to the vendor.

ONEKEY Vulnerability Insights critical patch review_Blog-Overview

ClamAV Critical Patch Review

February 21, 2023

In this technical deep dive, we explore the underlying issues fixed by the recent critical patch released by ClamAV.

ONEKEY Security Advisory: Security vulnerability in binwalk Blog Overview Banner

Security Advisory: Remote Command Execution in binwalk

January 31, 2023

We have identified a path traversal vulnerability in binwalk that could be abused to gain remote command execution.

Security Advisory: Unauthenticated Configuration Export in Multiple WAGO Products

January 16, 2023

We’ve automatically identified vulnerabilities affecting multiple WAGO industrial controllers using ONEKEY’s platform and reported it to the vendor.

ONEKEY Blog UNBLOB - a Long & dangerous road to proer extraction Blog Overview Banner

We have been working hard over the last few months since we first introduced unblob to the world at Blackhat Arsenal and DEFCON Demo Labs. As the project continues to grow, we wanted to share a few things with you.

Security Advisory: Asus M25 NAS Vulnerability

December 1, 2022

This one is special because it affects a NAS device from Asus, which according to them “has been EOL for years“, with the latest firmware version dating back 10 years. Since there’s no fix in sight, we don’t have to wait for the 90 days and can publish the interesting details.

OpenSSL released a patch for high severity vulnerabilities – do operators and vendors of connected devices need to worry?

November 2, 2022

The short answer is: not about this patch. The effects of CVE-2022-3786 and CVE-2022-3602 on ICS, IoT, and IoMT devices are negligible. But the long answer is more complex than this.

Blogoverview Banner of the ONEKEY Advisory Netgear Routers FunJSQ

Security Advisory: NETGEAR Routers FunJSQ Vulnerabilities

September 15, 2022

As we work to improve our component discovery capabilities to create more comprehensive software BOMs, we sometimes encounter “strange” third-party components. So also in the NETGEAR routers Funjsq!

Advisory Cisco Blog Banner Overview Page

Advisory: Cisco Small Business RV Series Routers Web Filter Database Update Command Injection Vulnerability

August 9, 2022

Not all bugs are created equal. This advisory describes a vulnerability we identified when hunting for bugs to craft exploit chains for PWN2OWN 2021. Sadly, the vulnerable path is only reachable once a day so it did not match the PWN2OWN rules 🙁

Advisory: FESTO: CECC-X-M1 – Command Injection Vulnerabilities

July 7, 2022

To evaluate and strengthen the automated vulnerability detection capabilities of ONEKEY, we frequently download and analyze firmware images from a variety of vendors. This is how we stumbled upon the CECC-X-M1 product line, an industrial controller manufactured by FESTO.