888 matches found
CVE-2025-8477
The CVE-2025-8477 entry concerns Alpine iLX-507. Affects the device’s vCard parsing, where insufficient validation of user-supplied data copies into a fixed-length stack-based buffer, causing a stack-based overflow. This can enable remote code execution in the context of root for network-adjacent...
CVE-2025-8480
CVE-2025-8480 concerns Alpine iLX-507 devices with a command-injection path in the Tidal music streaming app. The root cause is insufficient validation of a user-supplied string used to construct a system call, allowing remote code execution with the device’s privileges by network-adjacent attack...
CVE-2025-8480 Alpine iLX-507 Command Injection Remote Code Execution
Alpine iLX-507 Command Injection Remote Code Execution. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Alpine iLX-507 devices. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Tidal music...
CVE-2025-8480 Alpine iLX-507 Command Injection Remote Code Execution
Alpine iLX-507 Command Injection Remote Code Execution. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Alpine iLX-507 devices. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Tidal music...
CVE-2025-8476 Alpine iLX-507 TIDAL Improper Certificate Validation Vulnerability
Alpine iLX-507 TIDAL Improper Certificate Validation Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Alpine iLX-507 devices. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...
CVE-2025-8476
CVE-2025-8476 concerns Alpine iLX-507 devices, where the TIDAL streaming app suffers from improper certificate validation. The flaw allows a network-adjacent attacker to execute arbitrary code with root privileges, with authentication not required. The issue is documented across multiple sources ...
CVE-2025-8476 Alpine iLX-507 TIDAL Improper Certificate Validation Vulnerability
Alpine iLX-507 TIDAL Improper Certificate Validation Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Alpine iLX-507 devices. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...
CVE-2025-8475 Alpine iLX-507 AVRCP Stack-based Buffer Overflow Remote Code Execution Vulnerability
Alpine iLX-507 AVRCP Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Alpine iLX-507 devices. User interaction is required to exploit this vulnerability in that the target...
CVE-2025-8475 Alpine iLX-507 AVRCP Stack-based Buffer Overflow Remote Code Execution Vulnerability
Alpine iLX-507 AVRCP Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Alpine iLX-507 devices. User interaction is required to exploit this vulnerability in that the target...
CVE-2025-8475
The CVE-2025-8475 entry concerns Alpine iLX-507 AVRCP stack-based buffer overflow that enables remote code execution. The affected device is the Alpine iLX-507 multimedia receiver, with impact as described: an attacker on the network adjacent can exploit via the AVRCP protocol to execute code wit...
CVE-2025-8474
The CVE-2025-8474 entry describes a stack-based buffer overflow in Alpine iLX-507 CarPlay protocol implementation. Affected: Alpine iLX-507 devices. Root-context code execution is possible due to improper validation of the length of user-supplied data before copying into a fixed-length stack buff...
CVE-2025-8474 Alpine iLX-507 CarPlay Stack-based Buffer Overflow Code Execution Vulnerability
Alpine iLX-507 CarPlay Stack-based Buffer Overflow Code Execution Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected installations of Alpine iLX-507 devices. Authentication is not required to exploit this vulnerability. The specific flaw...
CVE-2025-8474 Alpine iLX-507 CarPlay Stack-based Buffer Overflow Code Execution Vulnerability
Alpine iLX-507 CarPlay Stack-based Buffer Overflow Code Execution Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected installations of Alpine iLX-507 devices. Authentication is not required to exploit this vulnerability. The specific flaw...
CVE-2025-8473 Alpine iLX-507 UPDM_wstpCBCUpdStart Command Injection Vulnerability
Alpine iLX-507 UPDMwstpCBCUpdStart Command Injection Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected installations of Alpine iLX-507 devices. Authentication is not required to exploit this vulnerability. The specific flaw exists within t...
CVE-2025-8473 Alpine iLX-507 UPDM_wstpCBCUpdStart Command Injection Vulnerability
Alpine iLX-507 UPDMwstpCBCUpdStart Command Injection Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected installations of Alpine iLX-507 devices. Authentication is not required to exploit this vulnerability. The specific flaw exists within t...
CVE-2025-8473
The CVE-2025-8473 issue affects Alpine iLX-507 UPDM_wstpCBCUpdStart, where the UPDM_wstpCBCUpdStart function fails to properly validate user-supplied data before invoking a system call. This leads to an OS command injection that can execute code with root privileges. Exploitation is described as ...
CVE-2025-8472 Alpine iLX-507 vCard Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
Alpine iLX-507 vCard Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Alpine iLX-507 devices. User interaction is required to exploit this vulnerability in that the...
CVE-2025-8472 Alpine iLX-507 vCard Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
Alpine iLX-507 vCard Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Alpine iLX-507 devices. User interaction is required to exploit this vulnerability in that the...
CVE-2025-8472
CVE-2025-8472 affects Alpine iLX-507 devices. The vulnerability is a stack-based buffer overflow in vCard data parsing, caused by insufficient validation of the length of user-supplied data before copying to a stack buffer. Exploitation can lead to remote code execution with root privileges and r...
Alpine iLX-507 路径遍历漏洞
The Alpine iLX-507 is a multimedia receiver from Alpine USA. The Alpine iLX-507 suffers from a command injection vulnerability that can be exploited by an attacker to execute code in the context of the device...