Stan Plasmeijer

Role: CSIRT Handler
”>Hacker1

Social media

Icon - Stan Plasmeijer

Articles / cases / cves

CSIRT Cases

• DIVD-2024-00013 - Palo Alto PAN-OS Command Injection Vulnerability in GlobalProtect
• DIVD-2024-00010 - Unauthenticated Command Injection In Progress Kemp LoadMaster
• DIVD-2024-00008 - Authentication Bypass and Remote Code Execution in ConnectWise ScreenConnect
• DIVD-2024-00002 - Account takeover vulnerability in Gitlab CE/EE
• DIVD-2023-00039 - VMware vCenter Server RCE
• DIVD-2023-00022 - OS command injection vulnerability of Zyxel firewalls
• DIVD-2023-00011 - FortiNAC and FortiWeb RCE Vulnerability
• DIVD-2023-00009 - Cisco RV Series Remote Command Execution
• DIVD-2023-00006 - Unauthenticated code injection in QNAP QTS and QuTS hero
• DIVD-2022-00060 - Command Injection vulnerability in Bitbucket Server and Data Center

CVEs discovered

• CVE-2023-22583 - SQL Injection in Danfoss AK-EM 100
• CVE-2023-22584 - Cleartext credentials in Danfoss AK-EM 100
• CVE-2023-22585 - Reflected Cross-Site Scripting in Danfoss AK-EM 100
• CVE-2023-22586 - Local File Inclusion in Danfoss AK-EM 100
• CVE-2023-25911 - OS Command Injection in Danfoss AK-EM 100
• CVE-2023-25912 - Webreport disclosure to unauthorized actor in Danfoss AK-EM 100
• CVE-2023-25913 - Authentication Bypass in Danfoss AK-SM800A