/ Orange Cyberdefense Switzerland's technical blog Wed, 04 Jun 2025 13:59:15 +0000 en-US hourly 1 https://wordpress.org/?v=6.9.4 /wp-content/uploads/2024/10/cropped-favicon-32x32-1-32x32.png / 32 32 /2025/06/04/sonicdoor-attacking-sonicwalls-sma-500/ Wed, 04 Jun 2025 09:36:07 +0000 /?p=6642 Continue reading SonicDoor – Cracking SonicWall’s SMA 500]]> /2024/12/05/attacking-cortex-xdr-from-an-unprivileged-user-perspective/ Thu, 05 Dec 2024 12:49:41 +0000 /?p=6405 Continue reading Attacking Cortex XDR from an unprivileged user perspective]]> /2024/11/25/arbitrary-web-root-file-read-in-sitecore-before-v10-4-0-rev-010422/ Mon, 25 Nov 2024 13:34:08 +0000 /?p=5725 Continue reading Arbitrary web root file read in Sitecore before v10.4.0 rev. 010422]]> /2024/09/10/getting-code-execution-on-veeam-through-cve-2023-27532/ Tue, 10 Sep 2024 13:32:28 +0000 /?p=4313 Continue reading Getting code execution on Veeam through CVE-2023-27532]]> /2023/08/14/cve-2022-41099-analysis-of-a-bitlocker-drive-encryption-bypass/ Mon, 14 Aug 2023 14:12:14 +0000 /?p=4374 Continue reading CVE-2022-41099 – Analysis of a BitLocker Drive Encryption Bypass]]> /2023/03/14/producing-a-poc-for-cve-2022-42475-fortinet-rce/ Tue, 14 Mar 2023 10:24:13 +0000 /?p=3776 Continue reading Producing a POC for CVE-2022-42475 (Fortinet RCE)]]> /2021/02/25/stealing-user-passwords-through-a-vpns-sso/ Thu, 25 Feb 2021 15:57:36 +0000 /?p=2831 Continue reading Stealing user passwords through a VPN’s SSO]]> /2020/03/30/combining-request-smuggling-and-cbc-byte-flipping-to-stored-xss/ Mon, 30 Mar 2020 07:51:06 +0000 /?p=2565 Continue reading Combining Request Smuggling and CBC Byte-flipping to stored-XSS]]> /2020/02/11/sonicwall-sra-and-sma-vulnerabilties/ Tue, 11 Feb 2020 12:43:12 +0000 /?p=2546 Continue reading SonicWall SRA and SMA vulnerabilities]]> /2019/01/24/magento-rce-local-file-read-with-low-privilege-admin-rights/ Thu, 24 Jan 2019 17:24:03 +0000 /?p=2493 Continue reading Magento – RCE & Local File Read with low privilege admin rights]]>