209 matches found
Linux kernel security vulnerabilities
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a possible buffer overflow in the mt7921mcutxratereport method of the mt76 module...
DEBIAN-CVE-2021-47064
In the Linux kernel, the following vulnerability has been resolved: mt76: fix potential DMA mapping leak With buf uninitialized in mt76dmatxqueueskbraw, its field skipunmap could potentially inherit a non-zero value from stack garbage. If this happens, it will cause DMA mappings for MCU command...
UBUNTU-CVE-2021-47064
In the Linux kernel, the following vulnerability has been resolved: mt76: fix potential DMA mapping leak With buf uninitialized in mt76dmatxqueueskbraw, its field skipunmap could potentially inherit a non-zero value from stack garbage. If this happens, it will cause DMA mappings for MCU command...
Weston Embedded uC-TCP-IP Security Vulnerability
Weston Embedded uC-TCP-IP is a TCP/IP stack for embedded systems from Weston Embedded. A security vulnerability exists in Weston Embedded uC-TCP-IP version v3.06.01 that stems from a denial of service vulnerability in the ICMP and ICMPv6 parsing functions...
The vulnerability of the uC-HTTP server, related to writing beyond the buffer boundary, allows attackers to execute arbitrary code by sending a specially crafted HTTP request.
The vulnerability of the uC-HTTP server is related to writing beyond the buffer boundaries. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the uC-HTTP server, related to writing beyond the buffer boundary, allows attackers to execute arbitrary code.
The vulnerability of the uC-HTTP server is related to writing beyond the buffer boundaries. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by sending a specially crafted HTTP request...
The vulnerability of the uC-HTTP server, related to writing beyond the buffer boundary, allows attackers to execute arbitrary code.
The vulnerability of the uC-HTTP server is related to writing beyond the buffer boundaries. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by sending a specially crafted HTTP request...
CVE-2020-27630
In Silicon Labs uC/TCP-IP 3.6.0, TCP ISNs are improperly random...
Espressif ESP32 安全漏洞
The Espressif ESP32 is a microcontroller from China Loxin Information Technology Espressif. A security vulnerability exists in the Espressif ESP32 3.0 ESP32rev300 ROM, which arises from an EMFI attack on the ECO3 that is capable of affecting CPU context-level PC values, regardless of secure boot...
Anyka Microelectronics AK3918EV300 MCU 命令注入漏洞
Anyka Microelectronics AK3918EV300 MCU is a single chip from Anyka Microelectronics China. A security vulnerability exists in the Anyka Microelectronics AK3918EV300 MCU v18. The vulnerability can be exploited by an attacker to execute arbitrary commands via a specially crafted wifi SSID or passwo...
kernel: drm/i915: mark requests for GuC virtual engines to avoid use-after-free
A use-after-free vulnerability was found in the Linux kernel Intel i915 graphics driver's GuC virtual engine request handling. A local user with access to GPU rendering can create requests on GuC virtual engines and trap references via syncfile or dmabuf, causing fence release operations to acces...
PT-2023-9791 · Visteon · Visteon Infotainment
Name of the Vulnerable Software and Affected Versions: Visteon Infotainment affected versions not specified Description: This issue allows local attackers to escalate privileges on affected installations of Visteon Infotainment systems. An attacker must first obtain the ability to execute...
The vulnerability of TP-Link SG105PE microcontroller software, related to deficiencies in authentication procedures, allows attackers to bypass the authentication process.
The vulnerability of TP-Link SG105PE switch’s microprogramming software is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to bypass the authentication process remotely...
UBUNTU-CVE-2021-42553
A buffer overflow vulnerability in stm32mwusbhost of STMicroelectronics in versions before 3.5.1 allows an attacker to execute arbitrary code when the descriptor contains more endpoints than USBHMAXNUMENDPOINTS. The library is typically integrated when using a RTOS such as FreeRTOS on STM32 MCUs...
STMicroelectronics stm32_mw_usb_host 安全漏洞
Stmicroelectronics stm32mwusbhost is a middleware USB Host MCU component from Stmicroelectronics, Switzerland. A security vulnerability exists in STMicroelectronics stm32mwusbhost, which stems from a buffer overflow vulnerability that could allow an attacker to execute arbitrary code when the...
Realtek RTL8195AM 安全漏洞
The Realtek RTL8195AM is an IoT microcontroller from China-based Realtek Semiconductor Realtek. A security vulnerability exists in previous versions of the Realtek RTL8195AM 284241d70308ff2519e40afd7b284ba892c730a3, which stems from the ability to lock the timer task when there are frequent and...
Security and Cheap Complexity
Ive been saying that complexity is the worst enemy of security for a long time now. Heres me in 1999. And its been true for a long time. In 2018, Thomas Dullien of Googles Project Zero talked about "cheap complexity." Andrew Appel summarizes: The anomaly of cheap complexity. For most of human...
CVE-2022-29948
Due to an insecure design, the Lepin EP-KP001 flash drive through KP001V19 is vulnerable to an authentication bypass attack that enables an attacker to gain access to the stored encrypted data. Normally, the encrypted disk partition with this data is unlocked by entering the correct passcode 6 to...
CVE-2022-29948
Due to an insecure design, the Lepin EP-KP001 flash drive through KP001V19 is vulnerable to an authentication bypass attack that enables an attacker to gain access to the stored encrypted data. Normally, the encrypted disk partition with this data is unlocked by entering the correct passcode 6 to...
CVE-2022-29948
Due to an insecure design, the Lepin EP-KP001 flash drive through KP001V19 is vulnerable to an authentication bypass attack that enables an attacker to gain access to the stored encrypted data. Normally, the encrypted disk partition with this data is unlocked by entering the correct passcode 6 to...