About DHD
News

Go to overviewCategory: Allgemein

Security advisory on CVE-2024-6387 ‘RegreSSHion’ vulnerability

July 2nd, 2024|

Severity: Partially affected, action required A signal handler race condition was found in OpenSSH's server (sshd), where a client does not authenticate within LoginGraceTime seconds (120 by default, 600 in old OpenSSH versions), then sshd's SIGALRM handler is called asynchronously. However, this signal handler calls various functions that are not async-signal-safe, for example, syslog(). This issue is also known as 'RegreSSHion' or CVE-2024-6387. Affected Products Product Severity XC3 [...]

Security advisory on CVE-2021-44228 ‘log4shell’ vulnerabilities

December 14th, 2021|

Severity: Not affected Researchers have recently uncovered security issues with an open-source logging library called ‘log4j’. The java-based log4j library is a widely deployed logging utility and used in many cloud applications that utilize Apache web servers. If exploited, it could result into Remote Code Execution. This issue is also known as 'log4shell' or CVE-2021-44228 All DHD Series 52 hardware, including XC2, XD2, XS2 cores, is not utilizing the log4j [...]

“Meltdown” and “Spectre” vulnerabilities

January 25th, 2018|

Researchers have recently uncovered security issues known as “Meltdown” and “Spectre”.These issues apply to all modern processors and allow unauthorized attackers to gain readaccess to parts of memory that were meant to be secret. To run a Spectre or Meltdown exploit,the attacker must be able to run code on the victim’s processor. As DHD Series 52 hardware itself is a closed environment, none of our hardware productsturned out to be [...]

Go to Top