EUVD-2025-32585

The YoSmart YoLink Smart Hub device 0382 exposes a UART debug interface. An attacker with direct physical access can leverage this interface to read a boot log, which includes network access credentials...

CVE-2025-59447

The YoSmart YoLink Smart Hub device 0382 exposes a UART debug interface. An attacker with direct physical access can leverage this interface to read a boot log, which includes network access credentials...

Security Bulletin: The following vulnerabilities that can affect IBM Storage Scale System are now included in 6.1.9.8 and 6.2.3.2

Summary The following vulnerabilities that can affect IBM Storage Scale System and could provide weaker than expected security are now fixed in 6.1.9.8 and 6.2.3.2. Vulnerability Details CVEID:CVE-2024-26934 DESCRIPTION: In the Linux kernel, the following vulnerability has been resolved: USB: cor...

USN-7774-5: Linux kernel (NVIDIA Tegra IGX) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - ACPI drivers; - Serial ATA and Parallel ATA...

CVE-2025-59447

Affected product/versions. YoSmart YoLink Smart Hub device 0382 is affected. The root cause is exposure of a UART debug interface. Impact. An attacker with direct physical access can read a boot log that includes network access credentials, leading to potential credential disclosure. Exploitation...

CVE-2025-59447

The YoSmart YoLink Smart Hub device 0382 exposes a UART debug interface. An attacker with direct physical access can leverage this interface to read a boot log, which includes network access credentials...

YoSmart YoLink Smart Hub 安全漏洞

The YoSmart YoLink Smart Hub is a smart home hub device from YoSmart USA. A security vulnerability exists in the YoSmart YoLink Smart Hub version 0382, which stems from exposing the UART debugging interface and could lead to the disclosure of network access credentials...

PT-2025-40944

Name of the Vulnerable Software and Affected Versions YoSmart YoLink Smart Hub device 0382 Description The device exposes a UART debug interface. An attacker with direct physical access can use this interface to read a boot log, which contains network access credentials. Recommendations At the...

CVE-2023-53551

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: userial: Add null pointer check in gserialresume Consider a case where gserialdisconnect has already cleared gser-ioport. And if a wakeup interrupt triggers afterwards, gserialresume gets called, which will lead to...

UBUNTU-CVE-2022-50489

In the Linux kernel, the following vulnerability has been resolved: drm/mipi-dsi: Detach devices when removing the host Whenever the MIPI-DSI host is unregistered, the code of mipidsihostunregister loops over every device currently found on that bus and will unregister it. However, it doesn't...

UBUNTU-CVE-2023-53580

In the Linux kernel, the following vulnerability has been resolved: USB: Gadget: core: Help prevent panic during UVC unconfigure Avichal Rakesh reported a kernel panic that occurred when the UVC gadget driver was removed from a gadget's configuration. The panic involves a somewhat complicated...

CVE-2023-53580 USB: Gadget: core: Help prevent panic during UVC unconfigure

In the Linux kernel, the following vulnerability has been resolved: USB: Gadget: core: Help prevent panic during UVC unconfigure Avichal Rakesh reported a kernel panic that occurred when the UVC gadget driver was removed from a gadget's configuration. The panic involves a somewhat complicated...

CVE-2023-53567 spi: qup: Don't skip cleanup in remove's error path

In the Linux kernel, the following vulnerability has been resolved: spi: qup: Don't skip cleanup in remove's error path Returning early in a platform driver's remove callback is wrong. In this case the dma resources are not released in the error path. this is never retried later and so this is a...

CVE-2023-53551 usb: gadget: u_serial: Add null pointer check in gserial_resume

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: userial: Add null pointer check in gserialresume Consider a case where gserialdisconnect has already cleared gser-ioport. And if a wakeup interrupt triggers afterwards, gserialresume gets called, which will lead to...

CVE-2022-50484 ALSA: usb-audio: Fix potential memory leaks

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Fix potential memory leaks When the driver hits -ENOMEM at allocating a URB or a buffer, it aborts and goes to the error path that releases the all previously allocated resources. However, when -ENOMEM hits at th...

PT-2025-40693

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's USB gadget u serial driver. Specifically, a null pointer dereference can occur in the gserial resume function if gserial disconnect has already cleare...

EUVD-2022-55304

Malicious code in bioql PyPI...

EUVD-2024-30541

Malicious code in bioql PyPI...

EUVD-2025-10999

Malicious code in bioql PyPI...

EUVD-2025-3988

Malicious code in bioql PyPI...