Tomofun Furbo 360和Tomofun Furbo Mini 访问控制错误漏洞

Tomofun Furbo 360 and Tomofun Furbo Mini are both smart pet cameras from Tomofun Corporation of Taiwan, China. An access control error vulnerability exists in the Tomofun Furbo 360 FB0035FW036 and earlier versions and the Tomofun Furbo Mini MC0020FW074 and earlier versions, which stems from...

CVE-2025-21066

Out-of-bounds read in the SPI decoder in Samsung Notes prior to version 4.4.30.63 allows local attackers to access out-of-bounds memory...

EUVD-2017-17138

Malware in sbrugna...

EUVD-2020-29050

Malware in sbrugna...

EUVD-2019-11007

Malware in sbrugna...

PT-2025-40944

Name of the Vulnerable Software and Affected Versions YoSmart YoLink Smart Hub device 0382 Description The device exposes a UART debug interface. An attacker with direct physical access can use this interface to read a boot log, which contains network access credentials. Recommendations At the...

YoSmart YoLink Smart Hub 安全漏洞

The YoSmart YoLink Smart Hub is a smart home hub device from YoSmart USA. A security vulnerability exists in the YoSmart YoLink Smart Hub version 0382, which stems from exposing the UART debugging interface and could lead to the disclosure of network access credentials...

UBUNTU-CVE-2022-50489

In the Linux kernel, the following vulnerability has been resolved: drm/mipi-dsi: Detach devices when removing the host Whenever the MIPI-DSI host is unregistered, the code of mipidsihostunregister loops over every device currently found on that bus and will unregister it. However, it doesn't...

EUVD-2025-24544

Malicious code in bioql PyPI...

EUVD-2025-4192

Malicious code in bioql PyPI...

EUVD-2024-52303

Malicious code in bioql PyPI...

EUVD-2025-24239

Malicious code in bioql PyPI...

EUVD-2025-25691

Malicious code in bioql PyPI...

USN-7755-2: Linux kernel (FIPS) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Media drivers; - SPI subsystem; - USB core drivers; - NILFS2 file system; - IPv6 networking; - Network traffic...

UBUNTU-CVE-2022-50368

In the Linux kernel, the following vulnerability has been resolved: drm/msm/dsi: fix memory corruption with too many bridges Add the missing sanity check on the bridge counter to avoid corrupting data beyond the fixed-sized bridge array in case there are ever more than eight bridges. Patchwork:...

DEBIAN-CVE-2025-39711

In the Linux kernel, the following vulnerability has been resolved: media: ivsc: Fix crash at shutdown due to missing meicldevdisable calls Both the ACE and CSI driver are missing a meicldevdisable call in their remove function. This causes the meicl client to stay part of the meidevice-filelist...

spi: fsl-qspi: use devm function instead of driver remove

...

CVE-2025-5191

An Unquoted Search Path vulnerability has been identified in the utility for Moxa’s industrial computers Windows. Due to the unquoted path configuration in the SerialInterfaceService.exe utility, a local attacker with limited privileges could place a malicious executable in a higher-priority...

CVE-2025-5191 Unquoted Search Path Vulnerability in the Utility for Industrial Computers (Windows)

An Unquoted Search Path vulnerability has been identified in the utility for Moxa’s industrial computers Windows. Due to the unquoted path configuration in the SerialInterfaceService.exe utility, a local attacker with limited privileges could place a malicious executable in a higher-priority...

Moxa Utility for DRP-A100 Series 安全漏洞

Moxa Utility for DRP-A100 Series is a software tool from Moxa Corporation, Taiwan, China, that simplifies the configuration and management of the device. A security vulnerability exists in Moxa Utility for DRP-A100 Series, which stems from an un-referenced path configuration in...