Rhino Security Labs

Technical Blog

CVE-2021-41577:
MITM to RCE
in EVGA Precision X1

Hunter Stanton
January 11, 2022

Precision X1 is a software overclocking tool released by EVGA.  This tool allows users to overclock their GPU, aka graphics processing unit or graphics card, to eke out more performance in video games or other applications.
One of the…

CVE-2021-38112:
AWS WorkSpaces Remote Code Execution

Cloud Malware:
Resource Injection in CloudFormation Templates

CVE-2020-5377: Dell OpenManage Server Administrator File Read

David Yesland

This blog explores a file read vulnerability in Dell OpenManage Server Administrator (OMSA) we found during an internal network penetration test, tracked as CVE-2020-5377 and a bypass for the fix tracked as CVE-2021-21514. 
When this Dell…