Home » 2021

Security Advisory 2109-01

15.12.2021
Technische Schwachstellen: Anforderungen der ISO 27001 erfüllen

Trovent Security GmbH discovered an SQL injection vulnerability in the search function of the OpenEMR calendar module

Weiterlesen...


Log4j Schwachstelle – was tun?

14.12.2021

Die Log4j Schwachstelle (CVE-2021-44228) hat viel Aufmerksamkeit erhalten. Wir zeigen auf, wie Sie sich schützen können.

Weiterlesen...


Podcast: Eine Frage der Sicherheit

06.12.2021

Trovent gibt es ab sofort auch zu hören! In der Podcast-Serie “Eine Frage der Sicherheit” des networker NRW e.V. ist unser Geschäftsführer Alexander Caswell als Gast der beiden Hosts Matthias Meyer und Patrick Grihn zum Thema Anomalie- und Angriffserkennung zu hören.

Weiterlesen...


Security Advisory 2106-01

10.11.2021

Trovent Security discovered that the Dolibarr application on default settings allows remote code execution in the website builder module.

Weiterlesen...


Security Advisory 2105-02

10.11.2021
Technische Schwachstellen: Anforderungen der ISO 27001 erfüllen

Trovent Security GmbH discovered that the Dolibarr application does not escape “greater than” and “smaller than” characters if they are reflected in one of the small pop-up windows with details of the object.

Weiterlesen...


Security Advisory 2104-03

05.11.2021

Trovent Security GmbH discovered an inconsistency between the API and the client of HealthForYou & Sanitas HealthCoach.

Weiterlesen...


Comparing Detection Results with Microsoft365 Defender

23.10.2021

Our objective: Comparing detection results from our EAGLE system with Microsoft365 Defender. And since the environments we typically work in are hybrid IT environments, consisting of both cloud and on-premise infrastructure, we wanted to make sure to include on-premise Windows machines in our testing process.

Weiterlesen...


Security Advisory 2105-01

16.06.2021

Trovent Security GmbH discovered that the VeryFitPro mobile application performs all communication with the backend API via cleartext HTTP.

Weiterlesen...


Security Advisory 2104-02

04.06.2021

Trovent Security GmbH discovered a critical vulnerability in the server API of the mobile apps Sanitas HealthCoach and HealthForYou.

Weiterlesen...


Security Advisory 2104-01

04.06.2021

Trovent Security GmbH discovered a vulnerability in the server API of the mobile apps Sanitas HealthCoach and HealthForYou

Weiterlesen...