Cybersecurity
- [CYBERSECURITY ADVISORY] - Roundcube vulnerability affecting Dualog Business Mail and Crew Mail
- [CYBERSECURITY ADVISORY] - Password protected archive attachments
- [CYBERSECURITY ADVISORY] Dualog's response to the Russia-Ukraine Crisis
- [CYBERSECURITY ADVISORY] Dualog Connection Suite, December 2020
- CVE-2020-26576: Directory traversal [FIXED]
- CVE-2020-26580: User data leakage [FIXED]
- CVE-2020-26579: SQL injection [FIXED]
- CVE-2020-26577: 2FA challenge/response is performed in a client-side application [FIXED]
- CVE-2020-26581: Easily brute forcible password hashes [WORKAROUND]
- CVE-2020-26578: Default password on Undocumented Admin Account [FIXED]