Orange Tsai

Cheng-Da Tsai, also as known as Orange Tsai, is the principal security researcher of DEVCORE and member of CHROOT security group from Taiwan. He has spoken at conferences such as Black Hat USA/ASIA, DEF CON, HITCON, HITB, Hack.lu, CODEBLUE and WooYun. He participates in numerous Capture-the-Flags (CTF), and won 2nd place in DEF CON 22/25 as team member of HITCON. Currently, he is focusing on application security and 0day research. Orange enjoys finding vulnerabilities and participating in Bug Bounty Programs. He is enthusiastic about Remote Code Execution (RCE), and uncovered RCEs in several vendors, such as Facebook, Uber, Apple, GitHub, Amazon, Netflix, Yahoo and Imgur.




CVEs Disclosed by Orange Tsai

12/12 CVE-2020-29563

An issue was discovered on Western Digital My Cloud OS 5 devices before 5.07.118. A NAS Admin authentication bypass...

9.8 CRITICAL
07/07 CVE-2020-15507

An arbitrary file reading vulnerability in MobileIron Core versions 10.3.0.3 and earlier, 10.4.0.0, 10.4.0.1, 10.4.0.2,...

7.5 HIGH
07/07 CVE-2020-15505

A remote code execution vulnerability in MobileIron Core & Connector versions 10.3.0.3 and earlier, 10.4.0.0, 10.4.0.1,...

9.8 CRITICAL
07/07 CVE-2020-15506

An authentication bypass vulnerability in MobileIron Core & Connector versions 10.3.0.3 and earlier, 10.4.0.0, 10.4.0.1,...

9.8 CRITICAL
10/17 CVE-2019-15064

HiNet GPON firmware version < I040GWR190731 allows an attacker login to device without any authentication.

9.8 CRITICAL
10/17 CVE-2019-13412

A service which is hosted on port 3097 in HiNet GPON firmware < I040GWR190731 allows an attacker to execute a specific...

7.5 HIGH
10/17 CVE-2019-15066

An “invalid command” handler issue was discovered in HiNet GPON firmware < I040GWR190731. It allows an attacker to...

9.8 CRITICAL
10/17 CVE-2019-15065

A service which is hosted on port 6998 in HiNet GPON firmware < I040GWR190731 allows an attacker to execute a specific...

7.5 HIGH
10/17 CVE-2019-13411

An “invalid command” handler issue was discovered in HiNet GPON firmware < I040GWR190731. It allows an attacker to...

9.8 CRITICAL
05/08 CVE-2019-11507

In Pulse Secure Pulse Connect Secure (PCS) 8.3.x before 8.3R7.1 and 9.0.x before 9.0R3, an XSS issue has been found on...

6.1 MEDIUM

This page is open source. Noticed a typo? Or something missing?

Improve this page