Tried, Tested and Proven

Upcoming security advisories

The following is a list of vulnerabilities that have been discovered by the Portcullis Security team, and are yet to be publicly disclosed.

Portcullis ID Vendor Reported Expected Publication Category
2577 DIGI 16/07/2015 Awaiting Vendor Response Denial Of Service
 
2569 Epiq Systems 02/07/2015 Awaiting Vendor Response Information Disclosure
 
2568 Epiq Systems 02/07/2015 Awaiting Vendor Response Weak Access Control Lists
 
2567 Epiq Systems 02/07/2015 Awaiting Vendor Response Communications Vulnerability
 
2566 Epiq Systems 02/07/2015 Awaiting Vendor Response Weak Password Hashing Algorithm
 
2557 Embedthis Software 18/06/2015 Awaiting Vendor Response HTTP Denial Of Service
 
2556 DIGI 16/06/2015 Awaiting Vendor Response Arbitrary File Delete
 
2555 DIGI 16/06/2015 Awaiting Vendor Response Arbitrary File Override
 
2554 Ektron 12/06/2015 Awaiting Vendor Response XML External Entity Attack
 
2551 InStep Software 09/06/2015 Awaiting Vendor Response Multiple Unauthenticated SQL Injections
 
2545 OpenSIS 30/05/2015 Awaiting Vendor Response Local File Inclusion
 
2544 OpenSIS 30/05/2015 Awaiting Vendor Response Multiple Authenticated SQL Injections
 
2521 Modx 23/03/2015 Awaiting Vendor Response Stored Cross Site Scripting
 
2496 CA Technologies 19/02/2015 Awaiting Vendor Response Arbitrary Redirection
 
2495 CA Technologies 19/02/2015 Awaiting Vendor Response Authentication Bypass
 
2490 Microsoft 16/02/2015 Awaiting Vendor Response Privilege Escalation
 
2454 TranSMART 23/12/2014 Awaiting Vendor Response Stored Cross Site Scripting
 
2448 Ektron 15/12/2014 Awaiting Vendor Response Arbitrary File Deletion
 
2447 Ektron 15/12/2014 Awaiting Vendor Response Arbitrary File Upload
 
2421 EPiServer 06/11/2014 Awaiting Vendor Response Stored Cross Site Scripting
 
2409 K7 Computing 22/10/2014 Awaiting Vendor Response Multiple Products Privilege Escalation
 
2393 GData 15/10/2014 Awaiting Vendor Response Multiple Products Privilege Escalation
 
2293 Multiple Vendors 20/08/2014 Awaiting Vendor Response Memory Leak
 
2217 Checkpoint 18/07/2014 Awaiting Vendor Response Memory Leak
 
2063 Yealink 08/05/2014 Awaiting Vendor Response Command Execution
 
1985 IBM 26/02/2014 Awaiting Vendor Response Privilege Escalation
 
1984 IBM 26/02/2014 Awaiting Vendor Response Privilege Escalation
 
1983 IBM 26/02/2014 Awaiting Vendor Response Privilege Escalation
 
1981 IBM 26/02/2014 Awaiting Vendor Response Privilege Escalation
 
1976 SAP 25/02/2014 Awaiting Vendor Response Code Execution
 
1936 Adobe 04/09/2014 Awaiting Vendor Response Permanent Cross Site Scripting
 
1935 Adobe 04/09/2014 Awaiting Vendor Response Reflective Cross Site Scripting
 
1826 Designum 15/11/2013 Awaiting Vendor Response SQL Injection
 
1779 Citrix 12/11/2013 Awaiting Vendor Response Multiple