Advisories

This page gives an overview of security advisories with their corresponding Common Vulnerabilities and Exposures (CVE) identifiers as published by BDO Cyber Security GmbH.

Sometimes the National Institute of Standards and Technology (NIST) assigns a different CVSS base score after analysis. Therefore, both, the base score as given by NIST and listed in the National Vulnerability Database (NVD) as well as the base score given by BDO Cyber Security GmbH are listed here.

In case of any questions, feel free to contact us.

CVE ID	Title	Severity (Base Score)	Advisory Link
CVE-2022-30334	Information Disclosure in Brave Browser < 1.34	NVD: CVSS 3.1 5.3 Medium BDO: CVSS 3.1 5.3 Medium	https://www.bdosecurity.de/de-de/advisories/cve-2022-30334
CVE-2023-1818	Use-After-Free in Google Chrome Browser < 112.0.5615.49	NVD: CVSS 3.1 8.8 High BDO: CVSS 3.1 5.0 Medium	https://www.bdosecurity.de/de-de/advisories/cve-2023-1818
CVE-2024-29862	Improper Access Control: Partial Firewall Bypass (TCP) in chirpstack-mqtt-forwarder < v4.2.1 and chirpstack-gateway-bridge < v4.0.11	NVD: Awaiting Analysis BDO: CVSS 3.1 5.3 Medium	https://www.bdosecurity.de/de-de/advisories/cve-2024-29862
CVE-2024-39226	OS Command Injection in Various GL.INet Devices	NVD: CVSS 3.1 9.8 Critical BDO: CVSS 3.1 8.8 High	https://www.bdosecurity.de/de-de/advisories/cve-2024-39226
CVE-2024-39227	Missing Access Controls and Path Traversal in various GL.INet Devices	NVD: CVSS 3.1 9.8 Critical BDO: CVSS 3.1 5.9 Medium	https://www.bdosecurity.de/de-de/advisories/cve-2024-39227
CVE-2024-39228	OS Command Injection in Various GL.INet Devices	NVD: CVSS 3.1 9.8 Critical BDO: CVSS 3.1 8.8 High	https://www.bdosecurity.de/de-de/advisories/cve-2024-39228
CVE-2024-33109	Directory Traversal in Ergophone/Tiptel IP 286 and Yealink SIP-T28P IP Phones	NVD: CVSS 3.1 9.8 Critial BDO: CVSS 3.1 9.9 Critical	https://www.bdosecurity.de/de-de/advisories/cve-2024-33109
CVE-2024-32384	Missing Support for HTTPS in Kerlink Gateways	NVD: Waiting for Analysis BDO: CVSS 3.1 6.8 Medium	https://www.bdosecurity.de/de-de/advisories/cve-2024-32384
CVE-2024-32388	Improper Access Control: Partial Firewall Bypass (UDP) in Kerlink Gateways	NVD: Waiting for Analysis BDO: CVSS 3.1 5.3 Medium	https://www.bdosecurity.de/de-de/advisories/cve-2024-32388
CVE-2024-39148	OS Command Injection via wmp-agent in Kerlink Gateways	NVD: Waiting for Analysis BDO: CVSS 3.1 8.1 High	https://www.bdosecurity.de/de-de/advisories/cve-2024-39148

Advisori

CVE ID

Title

Severity (Base Score)

Advisory Link