EUVD-2019-7072

Malware in sbrugna...

CVE-2025-34251

Tesla Telematics Control Unit TCU firmware prior to v2025.14 contains an authentication bypass vulnerability. The TCU runs the Android Debug Bridge adbd as root and, despite a “lockdown” check that disables adb shell, still permits adb push/pull and adb forward. Because adbd is privileged and the...

CVE-2025-34251

CVE-2025-34251 : Affected product is Tesla Telematics Control Unit (TCU) firmware prior to 2025.14. The root cause is an authentication bypass allowing the Android Debug Bridge (adbd) to run as root despite a lockdown check; adb push/pull and adb forward remain usable, and the USB port is exposed...

CVE-2025-34251 Tesla Telematics Control Unit (TCU) < v2025.14 Authentication Bypass

Tesla Telematics Control Unit TCU firmware prior to v2025.14 contains an authentication bypass vulnerability. The TCU runs the Android Debug Bridge adbd as root and, despite a “lockdown” check that disables adb shell, still permits adb push/pull and adb forward. Because adbd is privileged and the...

CVE-2025-34251 Tesla Telematics Control Unit (TCU) < v2025.14 Authentication Bypass

Tesla Telematics Control Unit TCU firmware prior to v2025.14 contains an authentication bypass vulnerability. The TCU runs the Android Debug Bridge adbd as root and, despite a “lockdown” check that disables adb shell, still permits adb push/pull and adb forward. Because adbd is privileged and the...

CVE-2025-34251

Tesla Telematics Control Unit TCU firmware prior to v2025.14 contains an authentication bypass vulnerability. The TCU runs the Android Debug Bridge adbd as root and, despite a “lockdown” check that disables adb shell, still permits adb push/pull and adb forward. Because adbd is privileged and the...

EUVD-2023-37895

Malicious code in bioql PyPI...

EUVD-2024-26223

Malicious code in bioql PyPI...

EUVD-2025-25796

Malicious code in bioql PyPI...

EUVD-2025-27734

Malicious code in bioql PyPI...

EUVD-2025-25607

Malicious code in bioql PyPI...

CVE-2025-59834

ADB MCP Server is a MCP Model Context Protocol server for interacting with Android devices through ADB. In versions 0.1.0 and prior, the MCP Server is written in a way that is vulnerable to command injection vulnerability attacks as part of some of its MCP Server tool definition and implementatio...

CVE-2025-59834 Command Injection in adb-mcp MCP Server

ADB MCP Server is a MCP Model Context Protocol server for interacting with Android devices through ADB. In versions 0.1.0 and prior, the MCP Server is written in a way that is vulnerable to command injection vulnerability attacks as part of some of its MCP Server tool definition and implementatio...

Command Injection

Overview adb-mcp is a MCP server for Android Debug Bridge ADB interactions in TypeScript Affected versions of this package are vulnerable to Command Injection via the executeAdbCommand function. An attacker can execute arbitrary system commands by supplying specially crafted input to the device...

PT-2025-39375

Name of the Vulnerable Software and Affected Versions ADB MCP Server versions 0.1.0 and prior Description ADB MCP Server, a Model Context Protocol server for interacting with Android devices through ADB, contains a flaw in its implementation. Versions 0.1.0 and earlier are susceptible to command...

CVE-2025-57452

The CVE-2025-57452 entry affects the realme BackupRestore app, version 15.1.12_2810c08_250314, due to improper URI scheme handling in the component com.coloros.pc.PcToolMainActivity. This vulnerability could allow local attackers to trigger a crash and potential cross-site scripting (XSS) via cra...

PT-2025-38407

Name of the Vulnerable Software and Affected Versions realme BackupRestore app version 15.1.12 2810c08 250314 Description The application suffers from improper URI scheme handling within the com.coloros.pc.PcToolMainActivity component. This allows local attackers to cause a crash and potential...

CVE-2025-25736

Kapsch TrafficCom RIS-9260 RSU LEO v3.2.0.829.23, v3.8.0.1119.42, and v4.6.0.1211.28 were discovered to contain Android Debug Bridge ADB pre-installed /mnt/c3platpersistent/opt/platform-tools/adb and enabled by default, allowing unauthenticated root shell access to the cellular modem via the...

CVE-2025-25736

Kapsch TrafficCom RIS-9260 RSU LEO v3.2.0.829.23, v3.8.0.1119.42, and v4.6.0.1211.28 were discovered to contain Android Debug Bridge ADB pre-installed /mnt/c3platpersistent/opt/platform-tools/adb and enabled by default, allowing unauthenticated root shell access to the cellular modem via the...

Kapsch TrafficCom RIS-9260 RSU LEO 安全漏洞

The Kapsch TrafficCom RIS-9260 RSU LEO is a road measurement unit from Kapsch TrafficCom, Austria, with functions for communication and co-management of the vehicle network in intelligent transportation. A security vulnerability exists in the Kapsch TrafficCom RIS-9260 RSU LEO versions...