CVE-2025-36461

Dell ControlVault3 and Dell ControlVault3 Plus are affected by multiple out-of-bounds read/write vulnerabilities in the ControlVault WBDI Driver Broadcom Storage Adapter. A crafted WinBioControlUnit call, using ControlCode WBIO_USH_GET_TEMPLATE (and related codes), can trigger memory corruption o...

EUVD-2018-20912

Malware in sbrugna...

EUVD-2018-20905

Malware in sbrugna...

EUVD-2005-0986

Malware in sbrugna...

EUVD-2016-6185

Malware in sbrugna...

CVE-2025-34251 Tesla Telematics Control Unit (TCU) < v2025.14 Authentication Bypass

Tesla Telematics Control Unit TCU firmware prior to v2025.14 contains an authentication bypass vulnerability. The TCU runs the Android Debug Bridge adbd as root and, despite a “lockdown” check that disables adb shell, still permits adb push/pull and adb forward. Because adbd is privileged and the...

CVE-2025-34251

CVE-2025-34251 : Affected product is Tesla Telematics Control Unit (TCU) firmware prior to 2025.14. The root cause is an authentication bypass allowing the Android Debug Bridge (adbd) to run as root despite a lockdown check; adb push/pull and adb forward remain usable, and the USB port is exposed...

Linux Distros Unpatched Vulnerability : CVE-2024-42100

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: clk: sunxi-ng: common: Don't call hwtoccucommon on hw without common In order to set the rat...

CVE-2023-20744

In vcu, there is a possible use after free due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07519142; Issue ID: ALPS07519200...

CVE-2023-20673

In vcu, there is a possible memory corruption due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07519103; Issue ID: ALPS07519103...

Arteche saTECH BCU 跨站请求伪造漏洞

The Arteche saTECH BCU is a flight room control unit from Arteche. A cross-site request forgery vulnerability exists in the Arteche saTECH BCU version 2.1.3, which stems from a cross-site request forgery that could allow an unauthorized attacker to perform malicious actions using the administrato...

Hitachi Energy RTU500 安全漏洞

Hitachi Energy RTU500 is a series of industrial control components from Hitachi, Ltd Hitachi, Japan. A security vulnerability exists in Hitachi Energy RTU500 that stems from a specific sequence of attacks that could result in a reboot of the affected CMU...

The vulnerability of the web management console of the IP-ATC Agat CU-7214, related to the lack of measures taken to protect the SQL query structure, allows a hacker to execute arbitrary SQL code.

The vulnerability of the IP-ATC Agat CU-7214 web management console relates to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a remote attacker to execute arbitrary SQL code...

Mercedes-Benz Head Unit security research report

Introduction This report covers the research of the Mercedes-Benz Head Unit, which was made by our team. Mercedes-Benz's latest Head Unit infotainment system is called Mercedes-Benz User Experience MBUX. We performed analysis of the first generation MBUX. MBUX was previously analysed by KeenLab...

PT-2024-34471 · Inovance · Inovance Hcplc Am402-Cpu1608Tptn +2

Name of the Vulnerable Software and Affected Versions: Inovance HCPLC AM401-CPU1608TPTN version 21.38.0.0 Inovance HCPLC AM402-CPU1608TPTN version 41.38.0.0 Inovance HCPLC AM403-CPU1608TN version 81.38.0.0 Description: A buffer overflow in the RecvSocketData function allows attackers to cause a...

kernel: clk: imx: scu: use _safe list iterator to avoid a use after free

A use-after-free flaw was found in the Linux kernel's i.MX system control unit clock driver in the error cleanup path. A local user can trigger this issue during clock initialization failure scenarios on i.MX hardware with System Control Unit firmware, where the cleanup loop incorrectly uses a...

A vulnerability in TOYOTA MOTOR's DCU (Display Control Unit)

Overview TOYOTA MOTOR's DCU contains a vulnerability which is triggered by BlueBorne vulnerability. TOYOTA MOTER CORPORATION reported this vulnerability to JPCERT/CC to notify users of its solution through JVN. Impact An unauthenticated attacker may cause a denial of service DoS condition or...

Nissan Altima Blind Spot Detection Sensor ECU 安全漏洞

The Nissan Altima Blind Spot Detection Sensor ECU is a blind spot detection sensor from Nissan Japan. A security vulnerability exists in Nissan Altima Blind Spot Detection Sensor ECU version 2022, which arises from an unprotected UDS session in the blind spot detection sensor ECU firmware, allowi...

UBUNTU-CVE-2024-42100

In the Linux kernel, the following vulnerability has been resolved: clk: sunxi-ng: common: Don't call hwtoccucommon on hw without common In order to set the rate range of a hw sunxiccuprobe calls hwtoccucommon assuming all entries in desc-ccuclks are contained in a ccucommon struct. This assumpti...

The vulnerability of the KNX Bus-System component of the microprogramming software for ABB Display 55, Display 63, Display 70, RoomTouch 4, BCU KNX devices allows a hacker to gain control over these devices by accessing the KNX bus.

The vulnerability of the KNX Bus-System microprogramming software components of ABB Display 55, Display 63, Display 70, RoomTouch 4, and BCU KNX lies in the lack of protection for operational data. Exploiting this vulnerability could allow an attacker to gain control over devices by accessing the...