+49 89 89082-110
NSIDE regularly releases security advisories aimed at informing our customers and others affected about security vulnerabilities. Most of the underlying vulnerabilities have been uncovered during customer engagements and affect third-party software. The vulnerabilities are published here with our customers’ consent and in close cooperation with the respective software vendors, as part of a responsible disclosure process.
| Date | Title | Affected Product(s) | Risk |
|---|---|---|---|
| 2026-01-23 | NSIDE-SA-2026-002: LiteLLM Remote Code Execution (CVE-2024-6825) Fix Bypass | LiteLLM | High |
| 2026-01-23 | NSIDE-SA-2026-001: SQL Injection in LiteLLM | LiteLLM | Critical |
| 2025-12-15 | NSIDE-SA-2025-002: Session ID Disclosure in UC eBanking Prime | UC eBanking Prime | High |
| 2025-12-15 | NSIDE-SA-2025-001: Partial Login Bypass in UC eBanking Prime | UC eBanking Prime OTC | High |
| 2024-12-17 | NSIDE-SA-2024-002: Authentication Bypass and Remote Code Execution in AXESS 5 | AXESS by Axiros | Critical |
| 2024-08-06 | NSIDE-SA-2024-001: Multiple Vulnerabilities in the GNCC GC2 Indoor Security Camera | GNCC GC2 Indoor Security Camera | Medium |
