Maarten Boone

**Name of the Vulnerable Software and Affected Versions** Welch Allyn Connex Spot Monitor versions prior to 1.52 **Description** The issue is related to the use of a default cryptographic key, which may allow configuration or environment manipulation. **Recommendations** For versions prior to 1.52, update to version 1.52 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** TinyIdentD versions 2.2 and earlier **Description** The issue allows remote attackers to execute arbitrary code via a long string to TCP port 113. This is due to a stack-based buffer overflow. **Recommendations** For TinyIdentD versions 2.2 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.