ERNW Research is an independent IT Security service provider based in Heidelberg, Germany. Since its founding in 2015, the focus of ERNW Research has been on performing Research projects in all areas of IT security - publicly funded projects in cooperation with universities, customer projects, as well as internal research projects.
Our goal is to perform cutting edge research to preserve excellence, and apply our knowledge and research results in highly technical projects for our customers.
Particular fields of attention are the areas of Incident Response, Forensic Computing, Malware Analysis, and Medical Device Security, as well as advanced security assessments.
Get the latest news about technical topics within the IT-Security Community and a lot of special insights. Sign up now for our Newsletter at ernw.de:
In June 2020 we reported three vulnerabilities in Nagios XI 5.7.1 to the vendor. The following CVE IDs were assigned to the issues : CVE-2020-15901: Command Injection in Nagios XI web interface (RCE) CVE-2020-15902: Cross Site Scripting (XSS) CVE-2020-15903: Reserved, details will be given on vendor fix CVE-2020-15901 and CVE-2020-15902 have meanwhile been fixed in […]