diff --git a/_cases/2023/DIVD-2023-00011.md b/_cases/2023/DIVD-2023-00011.md index e9f0ab54..7eaff093 100644 --- a/_cases/2023/DIVD-2023-00011.md +++ b/_cases/2023/DIVD-2023-00011.md @@ -3,7 +3,7 @@ layout: case title: "FortiNAC and FortiWeb RCE Vulnerability" author: Max van der Horst lead: Victor Pasman -status: Open +status: Closed excerpt: "Fortinet has released security updates for its FortiNAC and FortiWeb products to fix two critical vulnerabilities." researchers: - Stan Plasmeijer @@ -37,6 +37,16 @@ timeline: - start: 2023-02-21 end: event: "First version of this casefile." +- start: 2023-02-23 + end: + event: "DIVD starts researching fingerprint." +- start: 2023-03-23 + end: + event: "Fingerprint found." +- start: 2023-12-20 + end: + event: "Case closed." +ips: 0 --- ## Summary diff --git a/_cases/2023/DIVD-2023-00021.md b/_cases/2023/DIVD-2023-00021.md index 1f2094fc..2334edde 100644 --- a/_cases/2023/DIVD-2023-00021.md +++ b/_cases/2023/DIVD-2023-00021.md @@ -3,7 +3,7 @@ layout: case title: "Multiple vulnerabilities in Danfoss AK-EM 100" author: Max van der Horst lead: Max van der Horst -status: Open +status: Closed excerpt: "Danfoss AK-EM 100 has multiple web-related vulnerabilities. It is advised to phase out this product, as this product is End of Life." researchers: - Jony Schats (HackDefense) @@ -44,9 +44,14 @@ timeline: - start: 2023-05-26 end: event: "DIVD performs first mailrun." +- start: 2023-12-20 + end: + event: "Case closed." jekyll-secinfo: cve: url: /cves/CVE- + +ips: 52 --- ## Summary diff --git a/_cases/2023/DIVD-2023-00022.md b/_cases/2023/DIVD-2023-00022.md index 5948137a..f344d452 100644 --- a/_cases/2023/DIVD-2023-00022.md +++ b/_cases/2023/DIVD-2023-00022.md @@ -3,7 +3,7 @@ layout: case title: "OS command injection vulnerability of Zyxel firewalls" author: Stan Plasmeijer lead: Ralph Horn -status: Open +status: Closed excerpt: "Zyxel has released patches for an OS command injection vulnerability found by TRAPA Security and urges uses to install them for optimal protection." researchers: - Axel Boesenach @@ -36,7 +36,15 @@ timeline: event: "DIVD starts researching a way to identify Zyxel devices." - start: 2023-05-10 end: - event: "DIVD starts scanning the internet for vulnerable instances. " + event: "DIVD starts scanning the internet for vulnerable instances." +- start: 2023-05-30 + end: + event: "DIVD starts notifying customers with a vulnerable instance." +- start: 2023-12-20 + end: + event: "Case closed." + +ips: 46701 --- ## Summary diff --git a/_cases/2023/DIVD-2023-00025.md b/_cases/2023/DIVD-2023-00025.md index 381ae00e..eb701098 100644 --- a/_cases/2023/DIVD-2023-00025.md +++ b/_cases/2023/DIVD-2023-00025.md @@ -3,7 +3,7 @@ layout: case title: "Multiple vulnerabilities in Danfoss AK-SM800A" author: Max van der Horst lead: Max van der Horst -status: Open +status: Closed excerpt: "Danfoss AK-SM800A has multiple web-related vulnerabilities. It is advised to install the provided patch." researchers: - Jony Schats (HackDefense) @@ -42,9 +42,14 @@ timeline: - start: 2023-09-27 end: event: "DIVD starts notifying customers with a vulnerable instance." +- start: 2023-12-20 + end: + event: "Case closed." jekyll-secinfo: cve: url: /cves/CVE- + +ips: 1062 --- ## Summary