YoSmart YoLink Ecosystem 安全漏洞

YoSmart YoLink Ecosystem is a smart home system from YoSmart USA. A security vulnerability exists in the YoSmart YoLink Ecosystem that stems from the use of unencrypted MQTT for communication, which could lead to the disclosure of sensitive information or device control...

CVE-2025-27026

A missing double-check feature in the WebGUI for CLI deactivation in Infinera G42 version R6.1.3 allows an authenticated administrator to make other management interfaces unavailable via local and network interfaces. The CLI deactivation via the WebGUI does not only stop CLI interface but...

CVE-2025-27026

A missing double-check feature in the WebGUI for CLI deactivation in Infinera G42 version R6.1.3 allows an authenticated administrator to make other management interfaces unavailable via local and network interfaces. The CLI deactivation via the WebGUI does not only stop CLI interface but...

SquareX Unveils “Browser Syncjacking” Attack Granting Full Browser and Device Control

Palo Alto, USA, 30th January 2025, CyberNewsWire...

Apple Releases Security Updates for iOS and macOS

Apple has released security updates to address a vulnerability in multiple products. A cyber threat actor could exploit this vulnerability to take control of an affected device. CISA encourages users and administrators to review the following advisories and apply the necessary updates. iOS 15.7.9...

CVE-2022-23768

This Vulnerability in NIS-HAP11AC is caused by an exposed external port for the telnet service. Remote attackers use this vulnerability to induce all attacks such as source code hijacking, remote control of the device...