Research Archives

Security Advisory: Remote Code Execution in Delta Electronics DVW Devices

April 24, 2024 No Comments

This security advisory highlights critical vulnerabilities in Delta Electronics’ DVW industrial Ethernet routers, revealed using ONEKEY’s binary zero-day identification feature. The vulnerabilities, affecting all firmware versions, include command injections and buffer overflows that could lead to remote code execution. Despite the end-of-life (EOL) status of these devices, which means no patches will be issued, it is advised to limit access to the administrative interface to prevent exploitation.

Spotting Silent Patches in OSS with Binary Static Analysis

April 9, 2024 No Comments

Discover how our latest binary static analysis tool is unearthing silently patched vulnerabilities in open-source software, revealing risks that could leave your systems exposed. This blog post delves into examples from widely used libraries, underscoring the need for a more thorough approach to vulnerability management beyond traditional CVE databases.

ONEKEY Security Advisory Cisco Blog Overview Banner

Security Advisory: Remote Command Execution in Cisco Access Point WAP Products

March 18, 2024 No Comments

This security advisory discloses critical vulnerabilities in Cisco’s Small Business Wireless APs and describes remote command execution vulnerabilities in all firmware versions that could be uncovered through the use of ONEKEY’s recently released binary zero-day identification feature. Although there are no patches due to the end-of-life status of the devices, it is recommended to restrict access to the administration interface.

Binary Static Analysis – The Final Frontier

March 14, 2024 No Comments

Discover how the new feature for identifying zero-days in binaries files light on previously unexplored security risks in executable binaries. Learn more about our approach to decompilation, static code analysis and noise reduction to create a more secure digital environment. Learn more about the intricacies of our journey to improved cybersecurity.

UNBLOB - Blog Overview banner highlighting features: FileSystem Sandboxing, Nice UI, and Pattern Identification, with a modern digital blue background

Latest Developments in Unblob (3)

January 11, 2024 No Comments

Discover the latest UNBLOB developments, new features, and key changes in our blog post. Stay updated with our presentations at Blackhat Asia and BlackHat EU, the growing popularity of our GitHub repository, and major UNBLOB updates, including the FileSystem API, improved logging, and pattern auto-identification.

Making TOCTOU Great again – X(R)IP

October 20, 2023 No Comments

Explore the nuances of TOCTOU vulnerabilities in embedded systems with XiP (eXecute in Place). Learn how these vulnerabilities can be exploited at the hardware level to bypass secure boot processes.

Security Advisory: Clock Fault Injection on Mocor OS – Password Bypass

August 9, 2023 No Comments

Mocor OS running on UNISOC SoC is vulnerable to clock fault injection.
A vulnerability in the Mocor OS leads to bypass of the user password leading to compromise in saferty and privacy of the devices.

Security Advisory: Unauthenticated Remote Command Execution in Multiple WAGO Products

May 16, 2023 No Comments

Unauthenticated command injection vulnerability discovered in the WAGO Series PFC100 web interface.
A vulnerability in the WAGO web-based management interface enables arbitrary command execution with webserver privileges.

UNBLOB Project Update Blog Overview-Banner

Latest Developments in Unblob (2)

May 9, 2023 No Comments

In the ever-evolving world of firmware extraction, unblob continues to make waves. With five months of intense activity, our project has grown exponentially, and we have some exciting updates to share!

Leveraging ChatGPT to build a Hardware Fault Injection Tool.

April 27, 2023 No Comments

Discover the power of fault injection tools and how they can help identify vulnerabilities in your hardware systems before they can be exploited by attackers. Learn how an AI-assisted Teensy-based fault injection framework can be a great starting point for hobbyists interested in exploring the field.

! ! BRAND NEW WHITEPAPER: SOFTWARE SUPPLY CHAIN REGULATIONS: How to achieve effective & efficient SBOM management? »DOWNLOAD YOUR COPY NOW ! !

Research

Security Advisory: Remote Code Execution in Delta Electronics DVW Devices

Spotting Silent Patches in OSS with Binary Static Analysis

Security Advisory: Remote Command Execution in Cisco Access Point WAP Products

Binary Static Analysis – The Final Frontier

Latest Developments in Unblob (3)

Making TOCTOU Great again – X(R)IP

Security Advisory: Clock Fault Injection on Mocor OS – Password Bypass

Security Advisory: Unauthenticated Remote Command Execution in Multiple WAGO Products

Latest Developments in Unblob (2)

Leveraging ChatGPT to build a Hardware Fault Injection Tool.

Stay informed

News

Security Advisory: Remote Code Execution in Delta Electronics DVW Devices

Spotting Silent Patches in OSS with Binary Static Analysis

IT Security: New Automated Zero-Day Security Analysis For Binary Executable Files!

Downloads

Whitepaper: How to achieve effective & efficient SBOM management?

Whitepaper: Understanding the EU Cyber Resilience Act

Use Case: How SWISSCOM saves 400K EUR per avoided incident

Datasheet: ONEKEY Platform - Manufacturing

contact us