Advisories

Understanding risks. Taking measures.

Advisorie

This page gives an overview of security advisories with their corresponding Common Vulnerabilities and Exposures (CVE) identifiers as published by BDO Cyber Security GmbH.

Sometimes the National Institute of Standards and Technology (NIST) assigns a different CVSS base score after analysis. Therefore, both, the base score as given by NIST and listed in the National Vulnerability Database (NVD) as well as the base score given by BDO Cyber Security GmbH are listed here.

In case of any questions, feel free to contact us

CVE ID
Title
Severity (Base Score)
Advisory Link
CVE-2022-30334Information Disclosure in Brave Browser < 1.34

NVD: CVSS 3.1 5.3 Medium
BDO: CVSS 3.1 5.3 Medium

https://www.bdosecurity.de/de-de/advisories/cve-2022-30334
CVE-2023-1818
Use-After-Free in Google Chrome Browser < 112.0.5615.49

NVD: CVSS 3.1 8.8 High
BDO: CVSS 3.1 5.0 Medium

https://www.bdosecurity.de/de-de/advisories/cve-2023-1818
CVE-2024-29862
Incorrect Access Control in chirpstack-mqtt-forwarder < v4.2.1 and chirpstack-gateway-bridge < v4.0.11

NVD: Awaiting Analysis
BDO: CVSS 3.1 5.3 Medium

https://www.bdosecurity.de/de-de/advisories/cve-2024-29862
CVE-2024-39226
OS Command Injection in Various GL.INet Devices affecting

NVD: CVSS 3.1 9.8 Critical 
BDO: CVSS 3.1 8.8 High

https://www.bdosecurity.de/de-de/advisories/cve-2024-39226
CVE-2024-39227
Missing Access Controls and Path Traversal in various GL.INet Devices

NVD: CVSS 3.1 9.8 Critical 
BDO: CVSS 3.1 5.9 Medium

https://www.bdosecurity.de/de-de/advisories/cve-2024-39227
CVE-2024-39228
OS Command Injection in Various GL.INet Devices

NVD: CVSS 3.1 9.8 Critical 
BDO: CVSS 3.1 8.8 High

https://www.bdosecurity.de/de-de/advisories/cve-2024-39228
CVE-2024-33109
Directory Traversal in Ergophone/Tiptel IP 286 and Yealink SIP-T28P IP Phones

NVD: Awaiting Analysis
BDO: CVSS 3.1 9.9 Critical

https://www.bdosecurity.de/de-de/advisories/cve-2024-33109