We do this in accordance with our vulnerability disclosure policy and it is our way of giving something back to the security community.
Cyber security
Advisories
Sense of Security publishes security advisories on vulnerabilities identified through our security research.
We have identified vulnerabilities in products from major vendors such as IBM, Cisco, Microsoft, Oracle, Sun, Apache, and Adobe.
-
Security Advisory – SOS-19-001 – XML External Entities Injection (XXE) in XNAT 1.7
The Inteset Secure Lockdown de...
-
-
Security Advisory – SOS-18-002 – CA Workload Automation AE SQL Injection
The Inteset Secure Lockdown de...
-
-
Security Advisory – SOS-17-001 – Emsisoft Anti-Malware Behavior Blocker Bypass
The Inteset Secure Lockdown de...
-
Security Advisory – SOS-15-005 – Microsoft Skype for Business 2016 Unauthorised Script Execution Vulnerability
Current versions of the Micros...
-
Security Advisory – SOS-15-003 – ClickSoftware ClickMobile Multiple Security Vulnerabilities
ClickSoftware ClickMobile is a...
-
Security Advisory – SOS-15-004 – ClickSoftware ClickSchedule Multiple Security Vulnerabilities
The ClickSchedule application ...
-
Security Advisory – SOS-15-002 – XML External Entity Injection (XXE)
An XML External Entity attack ...
-
Security Advisory – SOS-15-001 – tcpdump Memory Disclosure Vulnerability
tcpdump is a common command li...
-
Security Advisory – SOS-14-005 – SAP NetWeaver Business Client for HTML Cross-site Scripting Vulnerabilities
Multiple cross-site scripting ...
-
Security Advisory – SOS-14-004 – SAP Work Manager, SAP CRM Service Manager and iOS Client Multiple Vulnerabilities
Multiple vulnerabilities were ...
-
Security Advisory – SOS-14-003 – Cisco CUCDM Self Care Portal Multiple Vulnerabilities
Multiple medium risk security ...
-
Security Advisory – SOS-14-001 – Cisco CUCDM IP Phone Services Multiple Vulnerabilities
The security vulnerabilities f...
-
Security Advisory – SOS-14-002 – Cisco CUCDM Administration Portal Multiple Vulnerabilities
Multiple high risk security vu...