THANK YOU FOR YOUR CONTACT REQUEST!

OUR SECURITY EXPERTS LOOK FORWARD TO OUR FURTHER EXCHANGE.

We have received your message and will get back to you as soon as possible.

 

Further interesting, current information is available in our BLOG.

Recommended Content

Security Advisory: Remote Code Execution in Ligowave Devices

A newly identified vulnerability in multiple Ligowave devices allows remote authenticated users to execute arbitrary commands through the web-based management interface. This security issue stems from improper input sanitization in the uam_add_internal and link_test functions, which fail to properly sanitize input parameters, leading to command injection possibilities. ONEKEY advises that affected devices, which are no longer supported by Ligowave, should have their administration interfaces restricted to management networks to mitigate potential exploitation risks.

Read More »
ONEKEY Security Advisory Remote Code Execution in Delta Electronics DVW Devices Blogoverview Banner

Security Advisory: Remote Code Execution in Delta Electronics DVW Devices

This security advisory highlights critical vulnerabilities in Delta Electronics’ DVW industrial Ethernet routers, revealed using ONEKEY’s binary zero-day identification feature. The vulnerabilities, affecting all firmware versions, include command injections and buffer overflows that could lead to remote code execution. Despite the end-of-life (EOL) status of these devices, which means no patches will be issued, it is advised to limit access to the administrative interface to prevent exploitation.

Read More »