CYBERSECURITY

Advisory

• [SECURITY ADVISORY] - Password protected archive attachments
• [CYBERSECURITY ADVISORY] Dualog's response to the Russia-Ukraine Crisis

CVE Listings

• Security update Dualog Connection Suite, December 2020
• CVE-2020-26581: Easily brute forcible password hashes [WORKAROUND]
• CVE-2020-26580: User data leakage [FIXED]
• CVE-2020-26579: SQL injection [FIXED]
• CVE-2020-26578: Default password on Undocumented Admin Account [FIXED]
• CVE-2020-26577: 2FA challenge/response is performed in a client-side application [FIXED]

See all 7 articles