Skip to navigation Skip to main content Skip to footer

Research Blog

Insights and research from our global cybersecurity team.

Filter content

Reset filters

SysAid Helpdesk blind SQL injection

This patch notification details a high risk vulnerability in SysAid Helpdesk, discovered by Daniel Compton. Download patch notification
Read more
NCC Group Publication Archive
Cyber Security
Patch notifications

05 Dec 2015

SysAid Helpdesk stored XSS

This patch notification details a high risk vulnerability in SysAid Helpdesk, discovered by Daniel Compton. Download patch notification
Read more
NCC Group Publication Archive
Cyber Security
Patch notifications

05 Dec 2015

Virtual Access Monitor Multiple SQL Injection Vulnerabilities

This patch notification details a number of high risk vulnerabilities in Virtual Access Monitor that have been discovered by Ken Wolstencroft Download Patch Notification
Read more
NCC Group Publication Archive
Cyber Security
Patch notifications

05 Dec 2015

Whatsupgold Premium Directory traversal

This patch notification details a high risk vulnerability in Whatsupgold Premium, that has been discovered by Daniel Compton.  Download Patch Notification
Read more
NCC Group Publication Archive
Cyber Security
Patch notifications

05 Dec 2015

Windows USB RNDIS driver kernel pool overflow

This patch notification details a high risk vulnerability discovered by Andy Davis within Microsoft Windows. Download Patch Notification
Read more
NCC Group Publication Archive
Cyber Security
Patch notifications

05 Dec 2015

Image IO Memory Corruption

This patch notification details a high risk vulnerability in Mac OS X Image Raw, this vulnerability was discovered by Paul Harrington.  Download patch notification
Read more
NCC Group Publication Archive
Cyber Security
Patch notifications

13 May 2015

Impress Pages CMS Remote Code Execution

This patch notification details a high risk vulnerability, discovered by David Middlehurst, in ImpressPages CMS v1.0.12.  Download patch notification
Read more
NCC Group Publication Archive
Cyber Security
Patch notifications

13 May 2015

Lumension Device Control Remote Memory Corruption

This patch notification details a high risk vulnerability, discovered by Andy Davis, in in Lumension Device Control. Download patch notification
Read more
NCC Group Publication Archive
Cyber Security
Patch notifications

13 May 2015

McAfee Email and Web Security Appliance Active session tokens of other users are disclosed within the UI

This patch notification details a medium risk vulnerability that has been discovered by Ben Williams in the McAfee Email and Web Security Appliance.  Download patch notification
Read more
NCC Group Publication Archive
Cyber Security
Patch notifications

13 May 2015

McAfee Email and Web Security Appliance Any logged-in user can bypass controls to reset passwords of other administrators

This patch notification details a high risk vulnerability discovered by Ben Williams in the McAfee Email and Web Security Appliance.  Download patch notification
Read more
NCC Group Publication Archive
Cyber Security
Patch notifications

13 May 2015