News
Security Advisory for CleverReach
The analysts at usd HeroLab examined CleverReach as part of their security analyses. This revealed a vulnerability in the Authentication...
Security Advisories for CA Harvest
The analysts at usd HeroLab examined the CA Harvest Software Change Manager as part of their security analyses. This revealed a vulnerability in the...
Corporate Social Responsibility - usd Awarded EcoVadis Silver Medal
Sustainability starts with ourselves, but together we can achieve more. Taking responsibility has always been an essential part of usd's mission...
Security Advisories for Vodafone Station
usd HeroLab analysts have identified vulnerabilities in the software of Vodafone station routers that allowed an unauthenticated user with access to...
Security Advisories for Apache Karaf <=4.3.2
The analysts at usd HeroLab examined the Apache Karaf software as part of their security analyses. This revealed a vulnerability in the...
Security Advisories for FileCloud < v21.3
The usd HeroLab analysts identified cross-site request forgery (CSRF) vulnerabilities in FileCloud's enterprise file sharing solution while...
usd PCI Best Practice Workshop Offers an Opportunity for Exchange on PCI DSS v4.0
On March 31, 2022, the PCI Security Standards Council (PCI SSC) published the long-awaited update of the standard, the PCI DSS v4.0, giving many...
Extensive Update: PCI DSS v4.0 is Here
The Payment Card Industry Security Standards Council (PCI SSC) released version 4.0 of the PCI DSS on March 31, 2022. The full version of the new...
Next Level Reporting: Our New Test Report Ensures Transparent and Comprehensible Pentest Results
A meaningful result is an essential part of a thorough security analysis. The majority of pentest result reports focus on the identified...
Security Advisory on Micro Focus HPE Operations Agent 12.04.006
Our HeroLab analysts have performed a security analysis on the product HPE Operations Agent by Micro Focus. They identified an XXE (XML eXternal...
Software Security: Dynamic Code Analysis and Vulnerability Management
In practice, it is not an easy task for manufacturers to continuously integrate a strong security mindset into complex software projects. In our...
Security Advisory for Thruk Monitoring < v2.46.3
Our analysts at usd HeroLab have examined the Thruk monitoring web interface for e.g. Naemon, Nagios or Icinga during their security analysis. A...