About DHD
News

Go to overviewCategory: Allgemein

Security advisory on CVE-2024-6387 ‘RegreSSHion’ vulnerability

July 2nd, 2024|Allgemein, Security Advisory, Support, Update|

Severity: Partially affected, action required A signal handler race condition was found in OpenSSH's server (sshd), where a client does not authenticate within LoginGraceTime seconds (120 by default, 600 in old OpenSSH versions), then sshd's SIGALRM handler is called asynchronously. However, this signal handler calls various functions that are not async-signal-safe, for example, syslog(). This issue is also known as 'RegreSSHion' or CVE-2024-6387. Affected Products Product Severity XC3 [...]

Security advisory on CVE-2021-44228 ‘log4shell’ vulnerabilities

December 14th, 2021|Allgemein, Security Advisory, Support, Update|

Severity: Not affected Researchers have recently uncovered security issues with an open-source logging library called ‘log4j’. The java-based log4j library is a widely deployed logging utility and used in many cloud applications that utilize Apache web servers. If exploited, it could result into Remote Code Execution. This issue is also known as 'log4shell' or CVE-2021-44228 All DHD Series 52 hardware, including XC2, XD2, XS2 cores, is not utilizing the log4j [...]

Go to Top