EUVD-2021-10777

Malware in sbrugna...

EUVD-2025-7378

Malicious code in bioql PyPI...

Google ChromeOS Elevation of Privilege Vulnerability

Google ChromeOS is a Web-based lightweight open source operating system from Google Google. Google ChromeOS suffers from an elevation of privilege vulnerability that originates from elevation of privilege in the installer and recovery image handling, which can be exploited by an attacker to cause...

CVE-2025-1121

Privilege escalation in Installer and Recovery image handling in Google ChromeOS version 15786.48.2 on device allows an attacker with physical access to gain root code execution and potentially unenroll enterprise-managed devices via a specially crafted recovery image...

CVE-2025-1121

Privilege escalation in Installer and Recovery image handling in Google ChromeOS version 15786.48.2 on device allows an attacker with physical access to gain root code execution and potentially unenroll enterprise-managed devices via a specially crafted recovery image...

CVE-2025-1121

Privilege escalation in Installer and Recovery image handling in Google ChromeOS version 15786.48.2 on device allows an attacker with physical access to gain root code execution and potentially unenroll enterprise-managed devices via a specially crafted recovery image...

CVE-2025-1121

CVE-2025-1121 describes a privilege-escalation in Google ChromeOS: on devices running ChromeOS 15786.48.2, an attacker with physical access can craft a recovery image to gain root code execution and potentially unenroll enterprise-managed devices. Affected component: installer and recovery image ...

PT-2025-10016 · Google · Chrome Os

Name of the Vulnerable Software and Affected Versions: Google ChromeOS version 123.0.6312.112 Description: The issue allows an attacker with physical access to gain root code execution and potentially unenroll enterprise-managed devices via a specially crafted recovery image. This is a result of...

Google Chrome OS 安全漏洞

Google ChromeOS is a Web-based lightweight open source operating system from Google Google. Google ChromeOS suffers from an elevation of privilege vulnerability that originates from elevation of privilege in the installer and recovery image handling, which can be exploited by an attacker to cause...

Bosch Security Systems Multiple Products Stack-based Buffer Overflow (CVE-2021-23850)

A specially crafted TCP/IP packet may cause a camera recovery image telnet interface to crash. It may also cause a buffer overflow which could enable remote code execution. The recovery image can only be booted with administrative rights or with physical access to the camera and allows the upload...

CVE-2023-4499

A potential security vulnerability has been identified in the HP ThinUpdate utility also known as HP Recovery Image and Software Download Tool which may lead to information disclosure. HP is releasing mitigation for the potential vulnerability...

CVE-2023-4499

A potential security vulnerability has been identified in the HP ThinUpdate utility also known as HP Recovery Image and Software Download Tool which may lead to information disclosure. HP is releasing mitigation for the potential vulnerability...

CVE-2023-4499

CVE-2023-4499 affects HP ThinUpdate (Recovery Image/Software Download Tool). The connected sources confirm an improper server certificate verification (CWE-295) in HP ThinUpdate, enabling potential information disclosure via MITM; affected versions prior to 2.7.15. HP has mitigations and instruct...

HP ThinUpdate Trust Management Issue Vulnerability

HP ThinUpdate is an application from Hewlett-Packard HP USA. It allows you to download system images and software add-ons from HP, capture HP Thin Client images, create ISO files, and more! A security vulnerability exists in the HP ThinUpdate utility HP Recovery Image and Software Download Tool,...

CVE-2021-23851

A specially crafted TCP/IP packet may cause the camera recovery image web interface to crash. It may also cause a buffer overflow which could enable remote code execution. The recovery image can only be booted with administrative rights or with physical access to the camera and allows the upload ...

CVE-2021-23850

A specially crafted TCP/IP packet may cause a camera recovery image telnet interface to crash. It may also cause a buffer overflow which could enable remote code execution. The recovery image can only be booted with administrative rights or with physical access to the camera and allows the upload...

CVE-2021-23851

CVE-2021-23851 affects Bosch IP cameras with a vulnerability in the recovery image web interface. A specially crafted TCP/IP packet may crash the recovery image web interface and can cause a buffer overflow that could enable remote code execution. The recovery image can only be booted with admini...

Bosch IP cameras 安全漏洞

Bosch IP cameras is a German Bosch network camera A security vulnerability exists in Bosch IP cameras, which stems from specially crafted TCP/IP packets that cause the camera's recovery image telnet interface to crash, and also results in a buffer overflow that enables remote code execution...

Design/Logic Flaw

Dell Client platforms restored using a Dell OS recovery image downloaded before December 20, 2019, may contain an insecure inherited permissions vulnerability. A local authenticated malicious user with low privileges could exploit this vulnerability to gain unauthorized access on the root folder...

Build Your Own PwnPhone

Build Your Own PwnPhone We’ll attempt to show you how to build your own Pwn Phone running the Kali operating system and our AOPP Android Open Pwn Project image. Let’s get cracking… Flashing the Phone 1. Download the Recovery image for your device: https://twrp.me/Devices 2. Connect the device to...