CERT Advisories

VU#617567: TrackR Bravo contains multiple vulnerabilities

TrackR Bravo contains multiple vulnerabilities Original Release date: 25 Oct 2016 | Last revised: 27 Oct 2016 Overview TrackR Bravo contains multiple vulnerabilities including sensitive information exposure...

VU#974055: iTrack Easy contains multiple vulnerabilities

iTrack Easy contains multiple vulnerabilities Original Release date: 25 Oct 2016 | Last revised: 25 Oct 2016 Overview iTrack Easy contains multiple vulnerabilities including sensitive information exposure...

VU#243144: Linux kernel memory subsystem copy on write mechanism contains a...

Linux kernel memory subsystem copy on write mechanism contains a race condition vulnerability Original Release date: 21 Oct 2016 | Last revised: 24 Oct 2016 Overview The...

VU#404187: Synology NAS servers contain insecure default credentials

Synology NAS servers contain insecure default credentials Original Release date: 20 Oct 2016 | Last revised: 20 Oct 2016 Overview Synology NAS servers DS107, DS116, and DS213,...

VU#970379: Green Packet DX-350 contains insecure default credentials

Green Packet DX-350 contains insecure default credentials Original Release date: 20 Oct 2016 | Last revised: 20 Oct 2016 Overview Green Packet DX-350 uses default credentials Description CWE-255: Credentials...

VU#326395: Nuuo NT-4040 firmware contains insecure default credentials

Nuuo NT-4040 firmware contains insecure default credentials Original Release date: 20 Oct 2016 | Last revised: 20 Oct 2016 Overview Nuuo NT-4040 Titan, firmware NT-4040_01.07.0000.0015_1120, uses default...

VU#200907: Intellian Satellite TV t-Series and v-Series firmware contains insecure default...

Intellian Satellite TV t-Series and v-Series firmware contains insecure default credentials Original Release date: 20 Oct 2016 | Last revised: 20 Oct 2016 Overview Intellian Satellite TV...

VU#763843: ASUS RP-AC52 contains multiple vulnerabilities

ASUS RP-AC52 contains multiple vulnerabilities Original Release date: 17 Oct 2016 | Last revised: 28 Oct 2016 Overview The ASUS RP-AC52 access point, firmware version 1.0.1.1s and...

VU#396440: MatrixSSL contains multiple vulnerabilities

MatrixSSL contains multiple vulnerabilities Original Release date: 11 Oct 2016 | Last revised: 12 Oct 2016 Overview MatrixSSL, version 3.8.5 and earlier, contains heap overflow, out-of-bounds read,...

VU#884840: Animas OneTouch Ping insulin pump contains multiple vulnerabilities

Animas OneTouch Ping insulin pump contains multiple vulnerabilities Original Release date: 04 Oct 2016 | Last revised: 11 Oct 2016 Overview The Animas OneTouch Ping insulin pump...

VU#338624: U by BB&T iOS banking application fails to properly validate...

U by BB&T iOS banking application fails to properly validate SSL certificates Original Release date: 30 Sep 2016 | Last revised: 06 Oct 2016 Overview U by...

VU#706359: Aternity version 9 vulnerable to cross-site scripting and remote code...

Aternity version 9 vulnerable to cross-site scripting and remote code execution Original Release date: 28 Sep 2016 | Last revised: 28 Sep 2016 Overview The Aternity webserver,...