Skip to main content
Compass SecurityCompass Security
Search
  • DE
  • EN
  • Current
    • News
    • Blog
    • Agenda
    • Advisories
  • Services
    • Penetration Tests
    • Security Reviews
    • Red Teaming
    • Bug Bounty
    • Managed Detection and Response
    • Digital Forensics and Incident Response
  • Products
    • FileBox
    • Hacking-Lab
  • Trainings
    • Digital Forensics and Incident Response (DFIR)
    • Internal Network and System Security
    • Internet of Things Security
    • Open Source Intelligence (OSINT)
    • Secure Mobile Apps
    • Security Boot Camp
    • Social Engineering
    • Web Application Security Advanced
    • Web Application Security Basic
  • Research
    • Advisories
    • White Paper
    • Presentations
    • Studies
  • Company
    • About us
    • Our Understanding
    • Locations
    • Mailing list TIGER-INFO
    • Jobs
  • Contact
    • Free Initial Discussion
  • Emergency?
  • DE
  • EN
Search

You are here:

  1. Compass Security
  2. News
  3. Detail

Vulnerabilities on AdRem NetCrunch platform

09/12/2020

Thierry Viaccoz, Sylvain Heiniger and Fabio Poloni identified several vulnerabilities in the AdRem NetCrunch monitoring solution.

 

Details to these advisories:

CSNC-2019-011 / Server-Side Request Forgery (SSRF)

CSNC-2019-012 / Improper Credential Storage

CSNC-2019-013 / Cross-Site Scripting (XSS)

CSNC-2019-014 / Remote Code Execution

CSNC-2019-015 / Improper Session Handling

CSNC-2019-016 / Cross-Site Request Forgery (CSRF)

CSNC-2019-017 / Hardcoded SSL Private Key

CSNC-2019-018 / Credentials Disclosure

 

Retour

Blog

A Look Back: Insights from Our Managed Bug Bounty Program

21.11.2024

At Compass Security, we are proud to offer a fully managed bug bounty program tailored to the needs of both SMEs and larger enterprises. From scoping…

Lire la suite

Calendar

Workshop: CySec in Public Transport

03.03.2025

The integrity and availability of data is crucial for the smooth operation of public transport. In this workshop, developed by onway ag and Compass…

Lire la suite

News

Vulnerability in Google Chrome Updater on Windows

12.11.2024

Sylvain Heiniger identified a vulnerability in Google Chrome Updater on Windows.

Lire la suite
  • Imprint
  • Legal
  • Sitemap
  • Deutsch
  • English
  • Twitter
  • GitHub
  • LinkedIn
  • RSS