AVANTIS is a small, flexible Printing Company with – within specific areas – great capacity. We attract some of the greatest companies in office equipment as well as the local small business. In addition to being specialized in printing plastic and leather folders we take pride in managing requests out of the ordinary.
Founded in 1969 as a photography processing studio, Custom Color, a GSP Company, has become a leader in graphics production over the past 50 years. The Kansas City-based operation runs as a full-service, digital printing company known for innovation and quality. With best-in-class technology and experienced leadership, Custom Color supplies graphics to leading consumer and retail brands throughout the United States.
Security & Compliance Standards Overview
No incidents recorded for AVANTIS in 2025.
No incidents recorded for Custom Color, A GSP Company in 2025.
AVANTIS cyber incidents detection timeline including parent company and subsidiaries
Custom Color, A GSP Company cyber incidents detection timeline including parent company and subsidiaries
Last 3 Security & Risk Events by Company
Nagios XI versions prior to 2026R1.1 are vulnerable to local privilege escalation due to an unsafe interaction between sudo permissions and application file permissions. A user‑accessible maintenance script may be executed as root via sudo and includes an application file that is writable by a lower‑privileged user. A local attacker with access to the application account can modify this file to introduce malicious code, which is then executed with elevated privileges when the script is run. Successful exploitation results in arbitrary code execution as the root user.
Out of bounds read and write in V8 in Google Chrome prior to 143.0.7499.147 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Use after free in WebGPU in Google Chrome prior to 143.0.7499.147 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
SIPGO is a library for writing SIP services in the GO language. Starting in version 0.3.0 and prior to version 1.0.0-alpha-1, a nil pointer dereference vulnerability is in the SIPGO library's `NewResponseFromRequest` function that affects all normal SIP operations. The vulnerability allows remote attackers to crash any SIP application by sending a single malformed SIP request without a To header. The vulnerability occurs when SIP message parsing succeeds for a request missing the To header, but the response creation code assumes the To header exists without proper nil checks. This affects routine operations like call setup, authentication, and message handling - not just error cases. This vulnerability affects all SIP applications using the sipgo library, not just specific configurations or edge cases, as long as they make use of the `NewResponseFromRequest` function. Version 1.0.0-alpha-1 contains a patch for the issue.
GLPI is a free asset and IT management software package. Starting in version 9.1.0 and prior to version 10.0.21, an unauthorized user with an API access can read all knowledge base entries. Users should upgrade to 10.0.21 to receive a patch.
