AttackFeed by Joe Wagner | Re: Multiple Security Misconfigurations and Customer Enumeration Exposure in Convercent Whistleblowing Platform (EQS Group)  - Full Disclosure

Re: Multiple Security Misconfigurations and Customer Enumeration Exposure in Convercent Whistleblowing Platform (EQS Group)  – Full Disclosure

Posted on By Joe-W No Comments on Re: Multiple Security Misconfigurations and Customer Enumeration Exposure in Convercent Whistleblowing Platform (EQS Group)  – Full Disclosure
Alert Feeds

 

Posted by Wade Sparks on Jan 21

Hello Yuffie,

Upon further investigation, the VulnCheck CNA determined that these
vulnerabilities were not suitable for CVE assignment. The
vulnerabilities exist within a SaaS product and are mitigated at the
CSP-level which in this case, would be the vendor, EQS Group. Rather than
contribute unactionable CVE records, the VulnCheck CNA used its
discretionary prowess to move forward with rejecting these records. This
policy aligns with a 2022…
 – Read More  – Full Disclosure 

You may also like

Alert Feeds
[REVIVE-SA-2025-005] Revive Adserver Vulnerability  – Full Disclosure
December 2, 2025
Alert Feeds
Missing Critical Security Headers in Legality WHISTLEBLOWING  – Full Disclosure
December 2, 2025
Alert Feeds
APPLE-SA-11-03-2025-7 visionOS 26.1  – Full Disclosure
November 7, 2025
Alert Feeds
TinyOS 2.1.2 printfUART Global Buffer Overflow via Unbounded Format Expansion  – Full Disclosure
January 10, 2026

Leave a Reply

AttackFeed by Joe Wagner
Powered by  GDPR Cookie Compliance
Privacy Overview

This website uses cookies so that we can provide you with the best user experience possible. Cookie information is stored in your browser and performs functions such as recognising you when you return to our website and helping our team to understand which sections of the website you find most interesting and useful.