Security Advisories
We at Azure Access Technology are dedicated to delivering safe, secure, and reliable products to our customers. As technology advances, our team and and third-party penetration testers continuously evaluate our products to identify and address vulnerabilities.
Patch Release
Critical vulnerabilities are resolved as soon as possible, in currently supported* versions of the firmware or software released.
Security Advisory
Security Advisories will be available on our website and will contain details of:
- The severity (based on CVSS score system v3.1)
- CVE identification number
- Hardware or software components affected (e.g. hardware model + generation/SDK/ADK)
- Versions of hardware or software that are affected
- Any mitigations
- Who the vulnerability was reported by
- Whether at the time of publication we are aware of it being actively exploited
- A description of the vulnerability
- Which versions patch releases are available for
Security Guidelines
See wiki for information on setting up the system securely.
Current Security Advisories
- CWE-248
- CWE-1301
- CWE-1242
- CWE-1191
- CWE-272
- CWE-787
- CWE-787-2
- CWE-1395
- CWE-1004
- CWE-521
- CWE-389
- CWE-16
- CWE-269
- CWE-22
- CWE-599
- CWE-321
- CWE-20
- CWE-20-2
- CWE-20-3
- CWE-20-4
- CWE-200
- CWE-200-2
- CWE-448
- CWE-1395
- CWE-1392
- CWE-389
- CWE-352
- CWE-306
- CWE-306-2
- CWE-693
- CWE-020
- CWE-754
- CWE-730
- CWE-730-2
- CWE-1392
- CWE-203
- CWE-770
- CWE-326
- CWE-1104
Security Researcher Acknowledgements
We deeply appreciate the contributions of all security researchers playing with our stuff but special thanks goes to these awesome people helping to make our products better
- Kevin Schaller
- Benjamin Lafois
- Alexi Bitsios
- Sebastian Toscano
- Dominik Schneider
`*` supported version is the latest released firmware version for the hardware which is backwards compatible with previously released firmware