UBUNTU-CVE-2022-48826

In the Linux kernel, the following vulnerability has been resolved: drm/vc4: Fix deadlock on DSI device attach error DSI device attach to DSI host will be done with host device's lock held. Un-registering host in "device attach" error path ex: probe retry will result in deadlock with below call...

PT-2024-25221 · Lb Link · Lb-Link Bl-W1210M

Name of the Vulnerable Software and Affected Versions: LB-LINK BL-W1210M version 2.0 Description: The issue is related to incorrect access control in the UART/Serial interface, allowing attackers to access the root terminal without authentication. This enables unauthorized access to the system...

CVE-2024-33374

Incorrect access control in the UART/Serial interface on the LB-LINK BL-W1210M v2.0 router allows attackers to access the root terminal without authentication...

CVE-2024-33374

CVE-2024-33374 affects the LB-LINK BL-W1210M v2.0 router. The issue is an incorrect access control in the UART/Serial interface that allows attackers to reach the root terminal without authentication. The CVSS base score is 9.8 (CRITICAL) with NETWORK attack vector, low complexity, no privileges ...

SUSE CVE-2023-52749

In the Linux kernel, the following vulnerability has been resolved: spi: Fix null dereference on suspend A race condition exists where a synchronous noqueue transfer can be active during a system suspend. This can cause a null pointer dereference exception to occur when the system resumes. Exampl...

Digisol Router 安全漏洞

Digisol Router is a series of routers from Digisol. A security vulnerability exists in Digisol Router that stems from the presence of root terminal access on a serial interface without proper access control...

Digisol Router 安全漏洞

Digisol Router is a series of routers from Digisol. A security vulnerability exists in Digisol Router that stems from the presence of root terminal access on a serial interface without proper access control...

CVE-2024-4231 Incorrect Access Control Vulnerability in Digisol Router

This vulnerability exists in Digisol Router DG-GR1321: Hardware version 3.7L; Firmware version : v3.2.02 due to presence of root terminal access on a serial interface without proper access control. An attacker with physical access could exploit this by identifying UART pins and accessing the root...

PT-2024-29859

Name of the Vulnerable Software and Affected Versions: Digisol Router DG-GR1321 version v3.2.02 Description: This issue exists due to the presence of root terminal access on a serial interface without proper access control. An attacker with physical access could exploit this by identifying UART...

ASUS RT-N12 安全漏洞

The ASUS RT-N12+ B1 is a wireless router. An elevation of privilege vulnerability exists in the ASUS RT-N12+ B1, which can be exploited by an attacker to bypass security restrictions caused by incorrect access control and gain root terminal access via the UART interface by sending a specially...

SUSE CVE-2024-26866

In the Linux kernel, the following vulnerability has been resolved: spi: lpspi: Avoid potential use-after-free in probe fsllpspiprobe is allocating/disposing memory manually with spiallochost/spialloctarget, but uses devmspiregistercontroller. In case of error after the latter call the memory wil...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a security issue in spi cadence-qspi...

UBUNTU-CVE-2023-52488

In the Linux kernel, the following vulnerability has been resolved: serial: sc16is7xx: convert from raw to noinc regmap functions for FIFO The SC16IS7XX IC supports a burst mode to access the FIFOs where the initial register address is sent $00, followed by all the FIFO data without having to...

Gallagher Controller 7000 Security Vulnerability

The Gallagher Controller 7000 is a powerful network connectivity controller from Gallagher of New Zealand. A security vulnerability exists in the Gallagher Controller 7000 that stems from a lack of resource release that prevents automatic recovery after an attack on the RS-485 interface, resultin...

SUSE CVE-2023-0011

A flaw in the input validation in TOBY-L2 allows a user to execute arbitrary operating system commands using specifically crafted AT commands. This vulnerability requires physical access to the serial interface of the module or the ability to modify the system or software which uses its serial...

SUSE CVE-2023-46343

In the Linux kernel before 6.5.9, there is a NULL pointer dereference in sendacknowledge in net/nfc/nci/spi.c...

TP-LINK TC70 Security Vulnerability

The TP-LINK TC70 is a home security camera from China P&L TP-LINK. A security vulnerability exists in the TP-LINK TC70 and C200 that stems from the presence of an insecure privilege vulnerability that allows a physically neighboring attacker to gain access to sensitive information through a...

CVE-2023-0011 Command Execution through Serial Interface of u-blox TOBY-L2

A flaw in the input validation in TOBY-L2 allows a user to execute arbitrary operating system commands using specifically crafted AT commands. This vulnerability requires physical access to the serial interface of the module or the ability to modify the system or software which uses its serial...

PT-2023-15946 · Toby-L200 +4 · Toby-L200 +4

Name of the Vulnerable Software and Affected Versions: TOBY-L2 series: TOBY-L200, TOBY-L201, TOBY-L210, TOBY-L220, TOBY-L280 Description: A flaw in the input validation in TOBY-L2 allows a user to execute arbitrary operating system commands using specifically crafted AT commands. This issue...

CVE-2023-47304

An issue was discovered in Vonage Box Telephone Adapter VDV23 version VDV21-3.2.11-0.5.1, allows local attackers to bypass UART authentication controls and read/write arbitrary values to the memory of the device...