Skip to main content
Compass SecurityCompass Security
Search
  • DE
  • FR
  • Current
    • News
    • Blog
    • Agenda
    • Advisories
  • Services
    • Penetration Tests
    • Security Review
    • Red Teaming
    • Purple Teaming
    • Bug Bounty Managed Service
    • Managed Detection and Response
    • Incident Response and Forensics
  • Products
    • FileBox
    • Hacking-Lab
  • Trainings
    • Digital Forensics and Incident Response (DFIR)
    • Internal Network and System Security
    • Internet of Things Security
    • Open Source Intelligence (OSINT)
    • Secure Mobile Apps
    • Security Boot Camp
    • Social Engineering
    • Web Application Security Advanced
    • Web Application Security Basic
  • Research
    • Advisories
    • White Paper
    • Presentations
    • Studies
  • Company
    • About us
    • Contact
    • Testimonials
    • Mailing list TIGER-INFO
    • Jobs
  • Contact
    • Free Initial Discussion
    • Sample Report
    • Locations
  • Emergency?
  • DE
  • FR
Search

You are here:

  1. Compass Security
  2. News
  3. Detail

Vulnerabilities on AdRem NetCrunch platform

12/09/2020

Thierry Viaccoz, Sylvain Heiniger and Fabio Poloni identified several vulnerabilities in the AdRem NetCrunch monitoring solution.

 

Details to these advisories:

CSNC-2019-011 / Server-Side Request Forgery (SSRF)

CSNC-2019-012 / Improper Credential Storage

CSNC-2019-013 / Cross-Site Scripting (XSS)

CSNC-2019-014 / Remote Code Execution

CSNC-2019-015 / Improper Session Handling

CSNC-2019-016 / Cross-Site Request Forgery (CSRF)

CSNC-2019-017 / Hardcoded SSL Private Key

CSNC-2019-018 / Credentials Disclosure

 

Back

Blog

Collaborator Everywhere v2

09.09.2025

Collaborator Everywhere is a well-known extension for Burp Suite Professional to probe and detect out-of-band pingbacks. 

 

We developed an upgrade to…

Read more

Calendar

it-sa 2025

07.10.2025

Trends & innovations in the IT security industry.

Read more

News

Cyberattack: When Suddenly Nothing Works Any More

27.08.2025

SMEs can take out cyber insurance with Helvetia. A recent cyber incident at a craft business shows just how valuable this can be.

Read more
  • Imprint
  • Legal
  • Sitemap
  • Deutsch
  • Français
  • Twitter
  • GitHub
  • LinkedIn
  • RSS