882 matches found
CVE-2018-4028
An exploitable firmware update vulnerability exists in the NT9665X Chipset firmware running on the Anker Roav A1 Dashcam, version RoavA1SWV1.9. The HTTP server could allow an attacker to overwrite the root directory of the server, resulting in a denial of service. An attacker can send an HTTP POS...
CVE-2018-4028
The CVE-2018-4028 issue affects the NT9665X chipset firmware in the Anker Roav A1 Dashcam (RoavA1_SW_V1.9). A vulnerability in the HTTP server could allow an attacker to overwrite the root directory via an HTTP POST, causing a denial of service. Talos details describe a firmware-update vulnerabil...
CVE-2018-4018
An exploitable firmware update vulnerability exists in the NT9665X Chipset firmware, running on Anker Roav A1 Dashcam version RoavA1SWV1.9. The HTTP server allows for arbitrary firmware binaries to be uploaded which will be flashed upon next reboot. An attacker can send an HTTP PUT request or...
CVE-2018-4018
CVE-2018-4018 affects the NT9665X Chipset firmware used in the Anker Roav A1 Dashcam (version RoavA1_SW_V1.9). The vulnerability arises from the HTTP server that handles firmware updates, allowing an attacker to upload arbitrary firmware binaries via HTTP PUT or upgrade requests, which are flashe...
CVE-2018-4025
An exploitable denial-of-service vulnerability exists in the XMLGetRawEncJpg Wi-Fi command of the NT9665X Chipset firmware, running on the Anker Roav A1 Dashcam, version RoavA1SWV1.9. A specially crafted packet can cause an invalid memory dereference, resulting in a device reboot...
CVE-2018-4026
An exploitable denial-of-service vulnerability exists in the XMLGetScreen Wi-Fi command of the NT9665X Chipset firmware, running on the Anker Roav A1 Dashcam, version RoavA1SWV1.9. A specially crafted set of packets can cause an invalid memory dereference, resulting in a device reboot...
CVE-2018-4023
The CVE-2018-4023 issue affects the NT9665X chipset firmware used in the Anker Roav A1 Dashcam (RoavA1_SW_V1.9). The vulnerability is in the XML_UploadFile Wi‑Fi command (command 5001) where the fixup_path routine copies user-supplied URL paths into a fixed-size stack buffer without bounds checki...
Vulnerability Spotlight: Multiple vulnerabilities in the Roav A1 Dashcam
Lilith Wyatt of Cisco Talos discovered these vulnerabilities. Executive Summary Cisco Talos is disclosing multiple vulnerabilities in the Anker Roav A1 Dashcam and the Novatek NT9665X chipset. The Roav A1 Dashcam by Anker is a dashboard camera that allows users to connect using the Roav app for...
Novatek NT9665X XML_GetRawEncJpg denial-of-service vulnerability
Summary An exploitable denial-of-service vulnerability exists in the XMLGetRawEncJpg Wi-Fi command of the NT9665X Chipset firmware, running on the Anker Roav A1 Dashcam, version “RoavA1SWV1.9”. A specially crafted packet can cause an invalid memory dereference, resulting in a device reboot. Teste...
Novatek NT9665X XML_GetScreen Strncmp denial-of-service vulnerability
Summary An exploitable denial-of-service vulnerability exists in the XMLGetScreen Wi-Fi command of the NT9665X Chipset firmware, running on the Anker Roav A1 Dashcam, version “RoavA1SWV1.9.” A specially crafted set of packets can cause an invalid memory dereference, resulting in a device reboot...
Novatek NT9665X HTTP Upload Firmware Update Vulnerability
Summary An exploitable firmware update vulnerability exists in the NT9665X Chipset firmware, running on Anker Roav A1 Dashcam version “RoavA1SWV1.9”. The HTTP server allows for arbitrary firmware binaries to be uploaded which will be flashed upon next reboot. An attacker can send an HTTP PUT...
CVE-2018-12199
Buffer overflow in an OS component in Intel CSME before versions 11.8.60, 11.11.60, 11.22.60 or 12.0.20 and Intel TXE version before 3.1.60 or 4.0.10 may allow a privileged user to potentially execute arbitrary code via physical access...
CVE-2018-12189
Unhandled exception in Content Protection subsystem in Intel CSME before versions 11.8.60, 11.11.60, 11.22.60 or 12.0.20 or Intel TXE before 3.1.60 or 4.0.10 may allow privileged user to potentially modify data via local access...
CVE-2018-11958
Insufficient protection of keys in keypad can lead HLOS to gain access to confidential keypad input data in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9206, MDM9607, MDM9650,...
April 17, 2018—KB4093120 (OS Build 14393.2214)
April 17, 2018—KB4093120 OS Build 14393.2214 Windows 10 Version 1607 will reach end of service on April 10, 2018. Devices that are running Windows 10 Home or Pro editions will no longer receive monthly security and quality updates that contain protection from the latest security threats.To contin...
CVE-2017-18320
QSEE unload attempt on a 3rd party TEE without previously loading results in a data abort in snapdragon automobile and snapdragon mobile in versions MSM8996AU, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 712 / SD 710 ...
Power Management Controller (PMC) Security Advisory
Summary: A potential security vulnerability in power management controller firmware may allow escalation of privilege and/ or information disclosure. Intel is releasing firmware updates to mitigate this potential vulnerability. Vulnerability Details CVEID: CVE-2018-3643 Description: A vulnerabili...
SUSE-SU-2018:3923-1 Security update for dpdk
This update for dpdk to version 16.11.8 provides the following security fix: - CVE-2018-1059: restrict untrusted guest to misuse virtio to corrupt host application ovs-dpdk memory which could have lead all VM to lose connectivity bsc1089638 and following non-security fixes: - Enable the broadcom...
PT-2018-1596 · Intel · Intel Csme +1
Name of the Vulnerable Software and Affected Versions: Intel CSME firmware versions prior to 12.0.5 Description: The issue is caused by multiple buffer overflows in Intel AMT in Intel CSME firmware, which may allow a privileged user to potentially execute arbitrary code with Intel AMT execution...
openSUSE: Security Advisory for Security (openSUSE-SU-2018:2399-1)
The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...