Utimaco – CVE-2020-26155

During a pentest last year I found an issue which affected the Windows installation product packages for the following products from Utimaco SecurityServer 3.x, 4.x up to version 4.31.1PaymentServer 3.x, 4.x up to version 4.33.0PaymentServer Hybrid 3.x, 4.x up to version 4.33.0Block-safe 2.0.0, 3.0.0CryptoServer CP5,, incl. CryptoServer CP5 Supporting CD and CryptoServer CP5Continue reading Utimaco – CVE-2020-26155

Siemens CVE’s

I got a couple of CVE’s assigned for some issues I reported to Siemens about a couple of their products. CVE-2020-25245 https://cert-portal.siemens.com/productcert/pdf/ssa-536315.pdf CVE-2020-28392 https://cert-portal.siemens.com/productcert/pdf/ssa-794542.pdf