Advisories

Advisory: Session ID Disclosure in UC eBanking Prime
NSIDE ATTACK LOGIC discovered multiple vulnerabilities that may allow

attackers to gain unauthorized access to the eBanking web interface, granting

access to sensitive data such as account statements. The vulnerability described

in this advisory is the disclosure of session IDs via a WebSocket connection.
Details

=======
Affected Product: UC eBanking Prime

Affected Versions: confirmed with 6.1.0 and 6.2.0 

Advisory: Partial Login Bypass in UC eBanking Prime
NSIDE ATTACK LOGIC discovered multiple vulnerabilities that may allow attackers

to gain unauthorized access to the eBanking web interface, granting access to

sensitive data such as account statements. The vulnerability described in this

advisory is a partial authentication bypass involving the OTC component.
Details

=======
Affected Product: UC eBanking Prime OTC

Affected Versions: confirmed with 6.1.0 and 6.2.0

Vulnerability Types: Login Factor Bypass

Security Risk: HIGH

Vendor Status: FIXED

Fixed Version: unknown

Advisory Status: PUBLISHED

Advisory URL: https://www.nsideattacklogic.de/advisories/NSIDE-SA-2025-001

Advisory URL (text only): https://www.nsideattacklogic.de/advisories/NSIDE-SA-2025-001.txt

CVE ID: pending
Introduction

============
UC eBanking Prime[1] is an on-premise electronic banking solution for business

clients of HypoVereinsbank/UniCredit. It consists of a web application hosted in

the client's intranet and a desktop application used for authentication called

OTC Client.
Description

===========
During regular use, the user provides a so-called "Keybag" file and a password

to the OTC Client  [...]

Advisory: Authentication Bypass and Remote Code Execution in AXESS 5

Unauthenticated remote attackers can bypass authorization requirements and access

protected API endpoints. Those endpoints allows for remote code execution.
Details

=======
Affected Product: AXESS by Axiros

Affected Versions: 4.x, 5.0.0

Vulnerability Type: Unauthenticated Remote-Code Execution

Security Risk: CRITICAL

Vendor Status: FIXED

Fixed Version: 4.3.2, 5.0.3>=

Advisory Status: PUBLISHED

Advisory URL: https://www.nsideattacklogic.de/advisories/NSIDE-SA-2024-002

Advisory URL (text only): https://www.nsideattacklogic.de/advisories/NSIDE-SA-2024-002.txt

CVE ID: CVE-2024-33898
Introduction

============
AXESS is a carrier grade device management server, which allows to manage TR-069

and other USP devices. It is designed for Tier 1 and Tier 2 support operators

to assist end customers with their router installations.
Description

===========
NSIDE decided to wait with delay the disclosure of detailed information until

19th of September 2024.

For further information for detection and patches, please refer to Axiros'

security bulletin at [0]. 
Risk

====
Unauthenticated remote attackers can fully compromise  [...]

Advisory: Multiple Vulnerabilities in the GNCC GC2 Indoor Security Camera
The product is affected by multiple vulnerabilities that allow an attacker with

physical access to the device to extract Wi-Fi credentials and access an

administrative shell.
Details

=======
Affected Product: GNCC GC2 Indoor Security Camera

Affected Versions: no version specified by the vendor

Vulnerability Types: Exposed UART Port Transmits Wi-Fi Credentials, Interactive Shell Login Prompt Bypass, Same Root Password on All Devices

Security Risk: MEDIUM

Vendor Status: NOT ACKNOWLEDGED

Fixed Version: none

Advisory Status: PUBLISHED

Advisory URL: https://www.nsideattacklogic.de/advisories/NSIDE-SA-2024-001

Advisory URL (text only): https://www.nsideattacklogic.de/advisories/NSIDE-SA-2024-001.txt

CVE IDs: CVE-2024-31798, CVE-2024-31799, and CVE-2024-31800
Introduction

============
During security research NSIDE discovered multiple vulnerabilities in the GC2

Indoor Security Camera sold by GNCC. These vulnerabilities are of medium

severity and are only exploitable by an attacker with physical access to the

camera. NSIDE notified the vendor but did not receive  [...]