Advisories Archive - Page 4 of 7

Advisories

A non-exhaustive list of public/released through vulnerability affiliation programs Vulnerabilities & CVEs discovered by VoidSec.

All releases are governed by our Vulnerability Disclosure Policy.

2018: TIM Telecom Italia – Multiple Vulnerabilities

http://www.telecomitalia.com/tit/it/footer/responsible-disclosure.html

2018: Telegram – Exportable Media Files in Secret Chat

https://voidsec.com/telegram-secret-chat-bug/

2018: Fastweb FASTGate – Multiple Vulnerabilities

(undisclosed)

CVE-2018-6849: DuckDuckGo WebRTC IP Leak

2018: CodeIgniter – Multiple Vulnerabilities

(undisclosed)

2018: British Airways Admin Console Without Authentication Left Exposed

(undisclosed)

2017: Oscommerce – Multiple Vulnerabilities

(undisclosed)

2017: Mura CMS – Multiple Vulnerabilities

https://ssd-disclosure.com/ssd-advisory-muracms-multiple-vulnerabilities/

2017: McAfee ePolicy Orchestrator (ePO) Agent Remote Log – DoS/RCE

(undisclosed)

CVE-2017-5799: HP HPE OpenCall Media Platform (OCMP) – Remote Command Execution (RCE)

https://support.hpe.com/hpesc/public/docDisplay?docId=emr_na-hpesbgn03686en_us