Lucene search
+L

371 matches found

ATTACKERKB
ATTACKERKB
•added 2026/04/03 3:15 p.m.•3 views

CVE-2026-23472

In the Linux kernel, the following vulnerability has been resolved: serial: core: fix infinite loop in handletx for PORTUNKNOWN uartwriteroom and uartwrite behave inconsistently when xmitbuf is NULL which happens for PORTUNKNOWN ports that were never properly initialized: - uartwriteroom returns...

5.7AI score0.00121EPSS
Exploits0References4Affected Software1
RedhatCVE
RedhatCVE
•added 2026/03/26 3:18 p.m.•6 views

CVE-2025-31703

A vulnerability found in Dahua NVR/XVR device. A third-party malicious attacker with physical access to the device may gain access to a restricted shell via the serial port, and bypasses the shell's authentication mechanism to escalate privileges...

2.4CVSS5.8AI score0.00231EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/03/26 3:2 p.m.•5 views

CVE-2026-32706

PX4 autopilot is a flight control solution for drones. Prior to 1.17.0-rc2, The crsfrc parser accepts an oversized variable-length known packet and copies it into a fixed 64-byte global buffer without a bounds check. In deployments where crsfrc is enabled on a CRSF serial port, an...

8.1CVSS6AI score0.00309EPSS
Exploits1References1
EUVD
EUVD
•added 2026/03/18 9:30 a.m.•5 views

EUVD-2025-208815

A vulnerability found in Dahua NVR/XVR device. A third-party malicious attacker with physical access to the device may gain access to a restricted shell via the serial port, and bypasses the shell's authentication mechanism to escalate privileges...

2.4CVSS5.7AI score0.00231EPSS
Exploits0References2
NVD
NVD
•added 2026/03/18 8:16 a.m.•4 views

CVE-2025-31703

A vulnerability found in Dahua NVR/XVR device. A third-party malicious attacker with physical access to the device may gain access to a restricted shell via the serial port, and bypasses the shell's authentication mechanism to escalate privileges...

2.4CVSS0.00231EPSS
Exploits0References1
Vulnrichment
Vulnrichment
•added 2026/03/18 7:13 a.m.•5 views

CVE-2025-31703

A vulnerability found in Dahua NVR/XVR device. A third-party malicious attacker with physical access to the device may gain access to a restricted shell via the serial port, and bypasses the shell's authentication mechanism to escalate privileges...

2.4CVSS5.7AI score0.00231EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/03/18 7:13 a.m.•36 views

CVE-2025-31703

A vulnerability found in Dahua NVR/XVR device. A third-party malicious attacker with physical access to the device may gain access to a restricted shell via the serial port, and bypasses the shell's authentication mechanism to escalate privileges...

2.4CVSS0.00231EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
•added 2026/03/18 7:13 a.m.•5 views

CVE-2025-31703

A vulnerability found in Dahua NVR/XVR device. A third-party malicious attacker with physical access to the device may gain access to a restricted shell via the serial port, and bypasses the shell's authentication mechanism to escalate privileges...

2.4CVSS5.7AI score0.00231EPSS
Exploits0References2
CVE
CVE
•added 2026/03/18 7:13 a.m.•115 views

CVE-2025-31703

Dahua NVR/XVR devices are affected. A third‑party with physical access may access a restricted shell through the serial port and bypass shell authentication to escalate privileges. The CVSS assessment indicates low impact across confidentiality and integrity, no impact on availability. The provid...

2.4CVSS5.7AI score0.00231EPSS
Exploits0References1
CNNVD
CNNVD
•added 2026/03/18 12:0 a.m.•8 views

Dahua NVR和Dahua XVR å®‰å…Øę¼ę“ž

Dahua NVR and Dahua XVR are both products of Dahua, a Chinese company. Dahua NVR is a series of network video recorders. Dahua XVR is a series of devices capable of recording and displaying high-definition and IP cameras. Both Dahua NVR and Dahua XVR have security vulnerabilities; these...

2.4CVSS5.9AI score0.00231EPSS
Exploits0References1
Positive Technologies
Positive Technologies
•added 2026/03/18 12:0 a.m.•15 views

PT-2026-26031

A vulnerability found in Dahua NVR/XVR device. A third-party malicious attacker with physical access to the device may gain access to a restricted shell via the serial port, and bypasses the shell's authentication mechanism to escalate privileges...

2.4CVSS5.8AI score0.00231EPSS
Exploits0References3
OSV
OSV
•added 2026/03/13 9:17 p.m.•6 views

CVE-2026-32706 PX4 autopilot has a global buffer overflow in crsf_rc via oversized variable-length known packet

PX4 autopilot is a flight control solution for drones. Prior to 1.17.0-rc2, The crsfrc parser accepts an oversized variable-length known packet and copies it into a fixed 64-byte global buffer without a bounds check. In deployments where crsfrc is enabled on a CRSF serial port, an...

7.1CVSS6AI score0.00309EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
•added 2026/03/13 9:17 p.m.•2 views

CVE-2026-32706

PX4 autopilot is a flight control solution for drones. Prior to 1.17.0-rc2, The crsfrc parser accepts an oversized variable-length known packet and copies it into a fixed 64-byte global buffer without a bounds check. In deployments where crsfrc is enabled on a CRSF serial port, an...

7.1CVSS6AI score0.00309EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
•added 2026/03/13 9:17 p.m.•49 views

CVE-2026-32706 PX4 autopilot has a global buffer overflow in crsf_rc via oversized variable-length known packet

PX4 autopilot is a flight control solution for drones. Prior to 1.17.0-rc2, The crsfrc parser accepts an oversized variable-length known packet and copies it into a fixed 64-byte global buffer without a bounds check. In deployments where crsfrc is enabled on a CRSF serial port, an...

7.1CVSS0.00309EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
•added 2026/02/14 3:9 p.m.•4 views

CVE-2026-23115

In the Linux kernel, the following vulnerability has been resolved: serial: Fix not set tty-port race condition Revert commit bfc467db60b7 "serial: remove redundant ttyportlinkdevice" because the ttyportlinkdevice is not redundant: the tty-port has to be confured before we call uartconfigureport,...

5.1AI score0.00074EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
•added 2026/02/11 12:0 a.m.•6 views

ZLAN5143D č®æé—®ęŽ§åˆ¶é”™čÆÆę¼ę“ž

ZLAN5143D is a serial port server from the Chinese company ZLAN. ZLAN5143D has an access control vulnerability, which stems from an inability to enforce authentication properly. This vulnerability allows attackers to directly access internal URLs...

9.8CVSS7.5AI score0.00732EPSS
Exploits0References4
AstraLinux
AstraLinux
•added 2026/01/27 5:1 a.m.•3 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: serial: 8250: Fix for panic due to PSLVERR When the PSLVERRRESPEN parameter is set to 1, the device generates an error response if an attempt is made to read an empty RBR Receive Buffer Register while the FIFO is enabled. In...

5.5CVSS6.4AI score0.00157EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
•added 2026/01/27 12:0 a.m.•4 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005147)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005147 advisory. In the Linux kernel, the following vulnerability has been resolved: serial: protect uartportdtrrts in uartshutdown too Commit af224ca2df29 serial: core: Prevent...

5.5CVSS5.8AI score0.00245EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
•added 2026/01/22 12:0 a.m.•5 views

Azure Linux 3.0 Security Update: kernel (CVE-2024-50058)

"The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-50058 advisory. - In the Linux kernel, the following vulnerability has been resolved: serial: protect uartportdtrrts in...

5.5CVSS6.6AI score0.00245EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
•added 2026/01/19 12:0 a.m.•6 views

MiracleLinux 7 : qemu-kvm-1.5.3-126.el7.9 (AXSA:2017-1696:04)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2017-1696:04 advisory. qemu-kvm is an open source virtualizer that provides hardware emulation for the KVM hypervisor. qemu-kvm acts as a virtual machine monitor together...

7.8CVSS5.7AI score0.00625EPSS
Exploits0References3
Rows per page
Query Builder