Wuliangye Yibin is a mechanical or industrial engineering company based out of YIBIN, SIC, China.
Syntech Systems, Inc. is an engineering design company, based in Tallahassee, Florida. As an innovator and early pioneer of electronic fuel management system development, we have the experience, proven product reliability and unequaled product support to best meet the needs for a dependable state-of-the-art fuel management system. Following a successful product design and development in the mid to late 1970s, we began providing the U.S. Department of Defense with fuel management systems in 1980. In response to that success, commercial sales began in 1989 with North Carolina Department of Transportation being our first significant customer. Since then, we have had success across many industries, and our FuelMaster product line is the only system accepted by all military branches of the Department of Defense. Our Engineering Department performs all product research and development of products on site, made up of a staff of 50 electrical, software and mechanical engineers, as well as Computer Science and MIS graduates. They design all printed circuit board electronics, chassis and other mechanical assemblies, power subsystems, embedded software for all our hardware devices, and a variety of Graphical User Interface (GUI) oriented systems for use on Microsoft Windows, Windows CE for the Syntech APOSD, Linux and the web. This diverse staff also includes a Test Engineering group, which assures that all items developed meet or exceed Syntech standards for quality and reliability. Research and Development is the focus of the majority of our engineers, thus placing our organization at the forefront of the electronic fuel management industry. We pride ourselves on the fact that every unit is designed, built by hand, and supported under one roof in our headquarters. From our manufacturing and quality assurance departments to our large engineering and customer support staff, maintaining our customers’ satisfaction has always been and will always be our foremost priority.
Security & Compliance Standards Overview
No incidents recorded for Wuliangye Yibin Co., Ltd in 2025.
No incidents recorded for Syntech Systems - FUELMASTER in 2025.
Wuliangye Yibin Co., Ltd cyber incidents detection timeline including parent company and subsidiaries
Syntech Systems - FUELMASTER cyber incidents detection timeline including parent company and subsidiaries
Last 3 Security & Risk Events by Company
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected when working with large buffers. This includes a rule passing a large buffer to a Lua script. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves disabling Lua rules and output scripts, or making sure limits, such as stream.depth.reassembly and HTTP response body limits (response-body-limit), are set to less than half the stack size.
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64_data. This issue has been patched in version 8.0.2. A workaround involves disabling rules that use entropy in conjunction with base64_data.
