44 matches found
Realtek SD card reader driver 安全漏洞
The Realtek SD card reader driver is a card reader driver from China-based Realtek Semiconductor Realtek. A security vulnerability exists in Realtek SD card reader driver version 10.0.26100.21374 and prior versions, which stems from a lack of input validation and allows an attacker to write to...
kernel: drivers/usb/storage/ene_ub6250.c
An out-of-bounds memory access flaw was found in the Linux kernel ENE SD/MS Card reader driver. This issue occurs when using a malicious USB device, which could allow a local user to crash the system...
What Is Network Security Management?
At the Heart of The Matter: Unraveling Essential Elements of Network Safeguard Administration in Digital Space The sphere of Online Network Safeguard Supervision presents a vast playground, humming with an abundance of methods, protocols, and modern-day tech tools. Together, their role is to...
CVE-2023-43776
Eaton easyE4 PLC offers a device password protection functionality to facilitate a secure connection and prevent unauthorized access. It was observed that the device password was stored with a weak encoding algorithm in the easyE4 program file when exported to SD card .PRG file ending...
CVE-2023-35699
Cleartext Storage on Disk in the SICK ICR890-4 could allow an unauthenticated attacker with local access to the device to disclose sensitive information by accessing a SD card...
CVE-2023-35699
Cleartext Storage on Disk in the SICK ICR890-4 could allow an unauthenticated attacker with local access to the device to disclose sensitive information by accessing a SD card...
CVE-2022-36443
An issue was discovered in Zebra Enterprise Home Screen 4.1.19. The device allows the administrator to lock some communication channels wireless and SD card but it is still possible to use a physical connection Ethernet cable without restriction...
PT-2022-35217 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.77 Description: A potential issue exists in the Linux Kernel that could lead to a kernel panic when removing a non-standard SDIO card. The actual impact and attack plausibility have not yet been proven...
PT-2022-27249 · Huawei · Huawei Recovery
Name of the Vulnerable Software and Affected Versions: Huawei Recovery affected versions not specified Description: The issue is related to a race condition vulnerability in SD upgrade mode, which may affect data confidentiality. There is no information provided about the estimated number of...
QEMU 安全漏洞
QEMU Quick Emulator is a set of simulation processor software by Fabrice Bellard, a French individual developer. The software is fast and cross-platform. QEMU has a security vulnerability in SDHCI that stems from the discovery of a read/write-by-read problem. An attacker exploited the vulnerabili...
DEBIAN-CVE-2022-20008
In mmcblkreadsingle of block.c, there is a possible way to read kernel heap memory due to uninitialized data. This could lead to local information disclosure if reading from an SD card that triggers errors, with no additional execution privileges needed. User interaction is not needed for...
IDEC PLC 安全漏洞
The IDEC PLC is a programmable controller. A security vulnerability exists in the IDEC PLC that can be exploited by an attacker to obtain user credentials from a file server, a backup repository, or a ZLD file saved on an SD card...
Rostelecom CS-C2SHW Data Forgery Issue Vulnerability
Rostelecom CS-C2SHW 5.0.082.1 A data forgery issue vulnerability exists, which stems from a firmware update that will automatically run if a special file is inserted on the SD card...
Unspecified Vulnerability in Samsung Mobile Devices (CNVD-2020-38175)
Android is a free and open source operating system from Google based on the Linux kernel without GNU components. An unspecified vulnerability exists in Samsung mobile devices, which can be exploited by an attacker to write arbitrary files in the SD card area...
PT-2018-16284 · Yi · Yi Home Camera
Name of the Vulnerable Software and Affected Versions: Yi Home Camera 27US version 1.8.7.0D Description: A firmware downgrade vulnerability exists in the firmware update functionality. A specially crafted file can cause a logic flaw, resulting in a firmware downgrade. An attacker can insert an SD...
September 13, 2016 — KB3189866 (OS Builds 14393.187 and 14393.189)
September 13, 2016 — KB3189866 OS Builds 14393.187 and 14393.189 This update includes quality improvements and security fixes. No new operating system features are being introduced in this update. Key changes include: Improved reliability of Windows Shell, map apps, Internet Explorer 11, and...
Momentum Axel 720P Hardcoded RTSP Certificate Vulnerability
The Momentum Axel 720P is a dual-band HD camera that supports WiFi connectivity. A security vulnerability exists in the Momentum Axel 720P version 5.1.8. An attacker can exploit the vulnerability by injecting an SD Card with firmware named 'ezviz.dav' to upgrade the firmware using this file...
Huawei Reading App Arbitrary File Deletion Vulnerability
Huawei Read is the built-in mobile reading software for Huawei phones. The Huawei Reading App suffers from an arbitrary file deletion vulnerability, which is due to the software failing to adequately verify user-submitted input. An attacker could exploit the vulnerability to delete specific files...
mixi for Android information management vulnerability
Overview mixi for Android contains an issue which stores friends' comments on a SD card. mixi for Android provided by mixi, Inc. contains an issue which stores friends' comments on a SD card, therefore other applications can access this information directly from the SD card. Kazuhiko Kusano of...
Yome Collection for Android issue in management of IMEI
Overview Yome Collection for Android contains an issue which stores the International Mobile Equipment Identity IMEI on a SD card. Applications without the READPHONESTATE permission may obtain the IMEI from the SD card. Kazuhiko Kusano of Graduate School of Information Sciences, Tohoku University...