DIVD / Stan plasmeijer

Home
Team
Code of Conduct
News
Reports
CSIRT
Partners
Contact
Donate

Stan plasmeijer

Stan Plasmeijer

Role: CSIRT

Social media

Icon - Stan Plasmeijer

Articles / cases / cves

CSIRT Cases

DIVD-2023-00022 - OS command injection vulnerability of Zyxel firewalls
DIVD-2023-00011 - FortiNAC and FortiWeb RCE Vulnerability
DIVD-2023-00009 - Cisco RV Series Remote Command Execution
DIVD-2023-00006 - Unauthenticated code injection in QNAP QTS and QuTS hero
DIVD-2022-00060 - Command Injection vulnerability in Bitbucket Server and Data Center

CVEs discovered

CVE-2023-22583 - SQL Injection in Danfoss AK-EM 100
CVE-2023-22584 - Cleartext credentials in Danfoss AK-EM 100
CVE-2023-22585 - Reflected Cross-Site Scripting in Danfoss AK-EM 100
CVE-2023-22586 - Local File Inclusion in Danfoss AK-EM 100
CVE-2023-25911 - OS Command Injection in Danfoss AK-EM 100
CVE-2023-25912 - Webreport disclosure to unauthorized actor in Danfoss AK-EM 100
CVE-2023-25913 - Authentication Bypass in Danfoss AK-SM800A

Security
Twitter
Github
ANBI

Scanning from
AS50559
IPv4: 194.5.73.0/24 aka 194.5.73.0-194.5.73.255 - Our own local infrastructure