From a2ceddd9fafd7529e796b2287121f8d0abd51342 Mon Sep 17 00:00:00 2001 From: Stan Plasmeijer <111912052+JstRelax@users.noreply.github.com> Date: Tue, 2 Jan 2024 14:22:29 +0100 Subject: [PATCH 1/2] Cases closed and filled in IPs notified --- _cases/2023/DIVD-2023-00021.md | 7 ++++++- _cases/2023/DIVD-2023-00022.md | 12 ++++++++++-- _cases/2023/DIVD-2023-00025.md | 7 ++++++- 3 files changed, 22 insertions(+), 4 deletions(-) diff --git a/_cases/2023/DIVD-2023-00021.md b/_cases/2023/DIVD-2023-00021.md index 1f2094fc..2334edde 100644 --- a/_cases/2023/DIVD-2023-00021.md +++ b/_cases/2023/DIVD-2023-00021.md @@ -3,7 +3,7 @@ layout: case title: "Multiple vulnerabilities in Danfoss AK-EM 100" author: Max van der Horst lead: Max van der Horst -status: Open +status: Closed excerpt: "Danfoss AK-EM 100 has multiple web-related vulnerabilities. It is advised to phase out this product, as this product is End of Life." researchers: - Jony Schats (HackDefense) @@ -44,9 +44,14 @@ timeline: - start: 2023-05-26 end: event: "DIVD performs first mailrun." +- start: 2023-12-20 + end: + event: "Case closed." jekyll-secinfo: cve: url: /cves/CVE- + +ips: 52 --- ## Summary diff --git a/_cases/2023/DIVD-2023-00022.md b/_cases/2023/DIVD-2023-00022.md index 5948137a..f344d452 100644 --- a/_cases/2023/DIVD-2023-00022.md +++ b/_cases/2023/DIVD-2023-00022.md @@ -3,7 +3,7 @@ layout: case title: "OS command injection vulnerability of Zyxel firewalls" author: Stan Plasmeijer lead: Ralph Horn -status: Open +status: Closed excerpt: "Zyxel has released patches for an OS command injection vulnerability found by TRAPA Security and urges uses to install them for optimal protection." researchers: - Axel Boesenach @@ -36,7 +36,15 @@ timeline: event: "DIVD starts researching a way to identify Zyxel devices." - start: 2023-05-10 end: - event: "DIVD starts scanning the internet for vulnerable instances. " + event: "DIVD starts scanning the internet for vulnerable instances." +- start: 2023-05-30 + end: + event: "DIVD starts notifying customers with a vulnerable instance." +- start: 2023-12-20 + end: + event: "Case closed." + +ips: 46701 --- ## Summary diff --git a/_cases/2023/DIVD-2023-00025.md b/_cases/2023/DIVD-2023-00025.md index 381ae00e..eb701098 100644 --- a/_cases/2023/DIVD-2023-00025.md +++ b/_cases/2023/DIVD-2023-00025.md @@ -3,7 +3,7 @@ layout: case title: "Multiple vulnerabilities in Danfoss AK-SM800A" author: Max van der Horst lead: Max van der Horst -status: Open +status: Closed excerpt: "Danfoss AK-SM800A has multiple web-related vulnerabilities. It is advised to install the provided patch." researchers: - Jony Schats (HackDefense) @@ -42,9 +42,14 @@ timeline: - start: 2023-09-27 end: event: "DIVD starts notifying customers with a vulnerable instance." +- start: 2023-12-20 + end: + event: "Case closed." jekyll-secinfo: cve: url: /cves/CVE- + +ips: 1062 --- ## Summary From cc271bbcb93af7970839a2eeb9626d1985d506d7 Mon Sep 17 00:00:00 2001 From: Stan Plasmeijer <111912052+JstRelax@users.noreply.github.com> Date: Tue, 2 Jan 2024 14:30:47 +0100 Subject: [PATCH 2/2] Closing case DIVD-2023-00011 --- _cases/2023/DIVD-2023-00011.md | 12 +++++++++++- 1 file changed, 11 insertions(+), 1 deletion(-) diff --git a/_cases/2023/DIVD-2023-00011.md b/_cases/2023/DIVD-2023-00011.md index e9f0ab54..7eaff093 100644 --- a/_cases/2023/DIVD-2023-00011.md +++ b/_cases/2023/DIVD-2023-00011.md @@ -3,7 +3,7 @@ layout: case title: "FortiNAC and FortiWeb RCE Vulnerability" author: Max van der Horst lead: Victor Pasman -status: Open +status: Closed excerpt: "Fortinet has released security updates for its FortiNAC and FortiWeb products to fix two critical vulnerabilities." researchers: - Stan Plasmeijer @@ -37,6 +37,16 @@ timeline: - start: 2023-02-21 end: event: "First version of this casefile." +- start: 2023-02-23 + end: + event: "DIVD starts researching fingerprint." +- start: 2023-03-23 + end: + event: "Fingerprint found." +- start: 2023-12-20 + end: + event: "Case closed." +ips: 0 --- ## Summary