542 matches found
PT-2025-51833
Name of the Vulnerable Software and Affected Versions Dropbear versions 2024.84 through 2025.88 Description An authenticated user can achieve privilege escalation in Dropbear via Unix domain socket forwardings. Specifically, a user able to log in via SSH can connect to any Unix socket as root,...
CVE-2024-53223
In the Linux kernel, the following vulnerability has been resolved: clk: ralink: mtmips: fix clocks probe order in oldest ralink SoCs Base clocks are the first in being probed and are real dependencies of the rest of fixed, factor and peripheral clocks. For old ralink SoCs RT2880, RT305x and RT38...
CVE-2024-53223
Technical details about CVE-2024-53223 are not provided in the connected documents. Please monitor for updates; current sources do not reveal affected products, versions, root cause, impact, or fixes.
CVE-2024-53223 clk: ralink: mtmips: fix clocks probe order in oldest ralink SoCs
In the Linux kernel, the following vulnerability has been resolved: clk: ralink: mtmips: fix clocks probe order in oldest ralink SoCs Base clocks are the first in being probed and are real dependencies of the rest of fixed, factor and peripheral clocks. For old ralink SoCs RT2880, RT305x and RT38...
CVE-2024-53223 clk: ralink: mtmips: fix clocks probe order in oldest ralink SoCs
In the Linux kernel, the following vulnerability has been resolved: clk: ralink: mtmips: fix clocks probe order in oldest ralink SoCs Base clocks are the first in being probed and are real dependencies of the rest of fixed, factor and peripheral clocks. For old ralink SoCs RT2880, RT305x and RT38...
Critical OpenWrt Vulnerability Exposes Devices to Malicious Firmware Injection
A security flaw has been disclosed in OpenWrt's Attended Sysupgrade ASU feature that, if successfully exploited, could have been abused to distribute malicious firmware packages. The vulnerability, tracked as CVE-2024-54143, carries a CVSS score of 9.3 out of a maximum of 10, indicating critical...
The vulnerability of the Attended SysUpgrade function of the sysupgrade.openwrt.org service allows a malicious actor to create a specially crafted malware image signed with a legitimate key.
The vulnerability of the Attended SysUpgrade function of the sysupgrade.openwrt.org service in the embedded operating system OpenWrt is related to the use of a reversible one-way hash function. Exploiting this vulnerability allows a malicious actor to remotely create a specially crafted malware...
Teltonika RUTOS 安全漏洞
Teltonika RUTOS is an OpenWrt-based unified operating system from Teltonika. A security vulnerability exists in Teltonika RUTOS that stems from incorrect privilege handling. A lower-privileged attacker with default privileges can exploit the vulnerability to access critical device resources via...
CVE-2024-54143
openwrt/asu is an image on demand server for OpenWrt based distributions. The request hashing mechanism truncates SHA-256 hashes to only 12 characters. This significantly reduces entropy, making it feasible for an attacker to generate collisions. By exploiting this, a previously built malicious...
Use of Weak Hash
Overview asu is an An image on demand server for OpenWrt based distributions Affected versions of this package are vulnerable to Use of Weak Hash which allows the ASU server to be polluted with malicious firmware images. Due to the low entropy employed when only 12 characters are used from the...
CVE-2024-54143
creationtimestamp| type| source ---|---|--- 2024-12-06 16:25:42+00:00| seen| https://infosec.exchange/users/cve/statuses/113606809513943170 2024-12-06 18:58:12+00:00| seen| https://t.me/cvedetector/12246 2024-12-09 14:20:03+00:00| seen| https://t.me/habrcomnews/32682 2024-12-10 01:02:23+00:00|...
CVE-2024-54143 openwrt/asu allows build artifact poisoning via truncated SHA-256 hash and command injection
openwrt/asu is an image on demand server for OpenWrt based distributions. The request hashing mechanism truncates SHA-256 hashes to only 12 characters. This significantly reduces entropy, making it feasible for an attacker to generate collisions. By exploiting this, a previously built malicious...
CVE-2024-54143
CVE-2024-54143 affects OpenWrt ASU (image-on-demand server). The build request hash truncates SHA-256 to 12 characters, lowering entropy and enabling potential hash collisions. An attacker could poison the artifact cache by serving a previously built malicious image, possibly combined with a comm...
CVE-2024-54143 openwrt/asu allows build artifact poisoning via truncated SHA-256 hash and command injection
openwrt/asu is an image on demand server for OpenWrt based distributions. The request hashing mechanism truncates SHA-256 hashes to only 12 characters. This significantly reduces entropy, making it feasible for an attacker to generate collisions. By exploiting this, a previously built malicious...
Security Advisory 2024-12-06-1 - OpenWrt Attended SysUpgrade server: Build artifact poisoning via truncated SHA-256 hash and command injection (CVE-2024-54143)
DESCRIPTION Due to the combination of the command injection in the imagebuilder image and the truncated SHA-256 hash included in the build request hash, an attacker can pollute the legitimate image by providing a package list that causes the hash collision. The issue consists of two main...
OpenWrt 安全漏洞
OpenWrt is a Linux operating system for embedded devices. A security vulnerability exists in versions prior to OpenWrt 920c8a1 that stems from a truncated SHA-256 hash down to 12 characters, reducing security and allowing the generation of malicious images...
The vulnerability of the LuCI web interface in the embedded operating system OpenWrt allows a hacker to elevate their privileges to the root level.
The vulnerability of the LuCI web interface in the embedded operating system OpenWrt is related to insufficient protection of registration data. Exploiting this vulnerability allows a malicious actor to elevate their privileges to the root level using the JSON-RPC API...
CVE-2024-51240
An issue in the luci-mod-rpc package in OpenWRT Luci LTS allows for privilege escalation from an admin account to root via the JSON-RPC-API, which is exposed by the luci-mod-rpc package...
PT-2024-7903
Name of the Vulnerable Software and Affected Versions: OpenWRT Luci LTS affected versions not specified Description: An issue in the luci-mod-rpc package allows for privilege escalation from an admin account to root via the JSON-RPC-API, which is exposed by the luci-mod-rpc package. The...
CVE-2024-51240
An issue in the luci-mod-rpc package in OpenWRT Luci LTS allows for privilege escalation from an admin account to root via the JSON-RPC-API, which is exposed by the luci-mod-rpc package...