8296 matches found
CVE-2025-34251
Tesla Telematics Control Unit TCU firmware prior to v2025.14 contains an authentication bypass vulnerability. The TCU runs the Android Debug Bridge adbd as root and, despite a “lockdown” check that disables adb shell, still permits adb push/pull and adb forward. Because adbd is privileged and the...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-390448)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-390448 advisory. In the Linux kernel, the following vulnerability has been resolved: USB: serial: ioedgeport: fix use after free in debug printk The devdbg&urb-dev-dev, ... which...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986955)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986955 advisory. In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: nullify cq-dbg pointer in mlx5debugcqremove Prior to this patch in case...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986500)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986500 advisory. In the Linux kernel, the following vulnerability has been resolved: jfs: xattr: fix buffer overflow for invalid xattr When an xattr size is not what is expected, it ...
Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-382351)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-382351 advisory. In the Linux kernel, the following vulnerability has been resolved: powerpc/powernv: Add a null pointer check to scomdebuginitone kasprintf returns a pointer to...
PT-2025-41116
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue where extra debug information is output if an inline backref cannot be found during a lookup operation. This was identified through reports from Syzbot...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987340)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987340 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: scsidebug: Sanity check block descriptor length in respmodeselect In respmodeselect sanity...
WordPress plugin WP Reset 日志信息泄露漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A log...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987160)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987160 advisory. In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix memory leak in mlx5coredestroycq error path Prior to this patch in case...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987024)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987024 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: scsidebug: Fix out-of-bound read in respreporttgtpgs The following issue was observed runni...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-986528)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986528 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: scsidebug: Sanity check block descriptor length in respmodeselect In respmodeselect sanity...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986947)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986947 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: scsidebug: Fix out-of-bound read in respreadcap16 The following warning was observed runnin...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986576)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986576 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: scsidebug: Sanity check block descriptor length in respmodeselect In respmodeselect sanity...
CVE-2025-34251
CVE-2025-34251 : Affected product is Tesla Telematics Control Unit (TCU) firmware prior to 2025.14. The root cause is an authentication bypass allowing the Android Debug Bridge (adbd) to run as root despite a lockdown check; adb push/pull and adb forward remain usable, and the USB port is exposed...
CVE-2025-34251
Tesla Telematics Control Unit TCU firmware prior to v2025.14 contains an authentication bypass vulnerability. The TCU runs the Android Debug Bridge adbd as root and, despite a “lockdown” check that disables adb shell, still permits adb push/pull and adb forward. Because adbd is privileged and the...
CVE-2025-34251 Tesla Telematics Control Unit (TCU) < v2025.14 Authentication Bypass
Tesla Telematics Control Unit TCU firmware prior to v2025.14 contains an authentication bypass vulnerability. The TCU runs the Android Debug Bridge adbd as root and, despite a “lockdown” check that disables adb shell, still permits adb push/pull and adb forward. Because adbd is privileged and the...
CVE-2025-34251 Tesla Telematics Control Unit (TCU) < v2025.14 Authentication Bypass
Tesla Telematics Control Unit TCU firmware prior to v2025.14 contains an authentication bypass vulnerability. The TCU runs the Android Debug Bridge adbd as root and, despite a “lockdown” check that disables adb shell, still permits adb push/pull and adb forward. Because adbd is privileged and the...
EUVD-2025-32585
The YoSmart YoLink Smart Hub device 0382 exposes a UART debug interface. An attacker with direct physical access can leverage this interface to read a boot log, which includes network access credentials...
CVE-2025-59447
The YoSmart YoLink Smart Hub device 0382 exposes a UART debug interface. An attacker with direct physical access can leverage this interface to read a boot log, which includes network access credentials...
CVE-2025-10653
An unauthenticated debug port may allow access to the device file system...