Compass Security News

Here you will find reports, interviews and news. We give you an insight into our work and report on 0day (zero-day) vulnerabilities discovered by our staff on customer projects or in their research time.

 

Lukasz D. identified an HTTP header injection vulnerability in Vert.x Framework.

Lire la suite

Nicolas Heiniger identified vulnerabilities in totemomail Encryption Gateway.

Lire la suite

Cyrill Brunschwiler von Compass Security war als Referent am 11. KMU-Forum Obersee engagiert. Moderator Martin Diener stellte ihn als "netten Hacker"…

Lire la suite

Stephan Sekula has identified a design vulnerability in Microsoft Intune that may allow getting access to confidential information.

Lire la suite

Stephan Sukula identified a design vulnerability in Microsoft Intune that allows bypassing the app PIN protection.

Lire la suite

Damian Pfammatter and Alessandro Zala identified an XSS vulnerability in Zimbra Collaboration Suite.

Lire la suite

Sylvain Heiniger identified an XSS vulnerability in GitLab CE+EE

Lire la suite

Am 23. November fand das Technologie Forum (TEFO'17) des Distributor Studerus AG statt. Compass Security war mit dabei - mit Live Hackings und ihrem…

Lire la suite

Nicolas Heiniger identified vulnerabilities in MyTy.

Lire la suite

Account-Hacking bei Amazon

Lire la suite

Benjamin Bruppbacher identified an XML External Entity Attack in the iText PDF Library.

Lire la suite

In recent months, Compass Security has supervised two scientific projects by students at the University of Applied Sciences Rapperswil HSR.

Lire la suite