« Home

Dominik Penner

I specialize in application security and infrastructure security. I have helped a wide variety of organizations secure their systems over the course of approximately 12 years. Some of these include: Internet Service Providers , Electronic Medical Software vendors and Open Source Software vendors. Professionally, I've worked as a Senior Security Consultant and Manager at NCC Group, where I tech led many engagements, assisted my reports in reaching their goals and promotions, and provided scoping support to our Solutions Architecture team. I've had the opportunity to tackle a wide variety of challenges, aiming to fully understand a client's needs. My main focus is to report critical vulnerabilities in software before malicious adversaries have the opportunity to exploit them.

Title	CVE
EA Origin Remote Command Execution	CVE-2019-11354
EA Origin Remote Command Execution	CVE-2019-12828
Axway SecureTransport XML Injection / XXE	CVE-2019-14277
KDE Frameworks < 51.60 Command Execution	CVE-2019-14744
KDE Ark < 20.08.0 Directory Traveral Command Execution	CVE-2020-16116
Maltego XML External Entity Injection	CVE-2020-24656