UBUNTU-CVE-2024-53149

In the Linux kernel, the following vulnerability has been resolved: usb: typec: ucsi: glink: fix off-by-one in connectorstatus UCSI connector's indices start from 1 up to 3, PMICGLINKMAXPORTS. Correct the condition in the pmicglinkucsiconnectorstatus callback, fixing Type-C orientation reporting...

CVE-2023-31280

An AirVantage online Warranty Checker tool vulnerability could allow an attacker to perform bulk enumeration of IMEI and Serial Numbers pairs. The AirVantage Warranty Checker is updated to no longer return the IMEI and Serial Number in addition to the warranty status when the Serial Number or IME...

Sierra Wireless AirVantage 安全漏洞

Sierra Wireless AirVantage is an IoT connectivity and management platform from Sierra Wireless Canada. A security vulnerability exists in Sierra Wireless AirVantage. An attacker could exploit the vulnerability to perform bulk enumeration of IMEI and serial number pairs...

CVE-2023-31280

Summary of CVE-2023-31280 (AirVantage Warranty Checker) : The vulnerability affects the AirVantage Warranty Checker component of Sierra Wireless AirVantage. The issue allows bulk enumeration of IMEI and Serial Numbers when looking up warranty status, due to exposure of sensitive information. The ...

PT-2024-12267 · Unknown · Airvantage

Name of the Vulnerable Software and Affected Versions: AirVantage affected versions not specified Description: The AirVantage online Warranty Checker tool has a vulnerability that could allow an attacker to perform bulk enumeration of IMEI and Serial Numbers pairs. The issue arises when using the...

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP2 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2023-52524: Fixed possible corruption in nfc/llcp bsc1220927. CVE-2024-49925: fbdev: efifb: Register sysfs groups through driver core bsc1232224 CVE-2024-50089:...

The vulnerability of AMD’s microprogrammed software for processors lies in the violation of data protection mechanisms, allowing attackers to circumvent the SPI ROM protection mechanism.

The vulnerability of AMD’s microprogrammed software lies in the bypass of the data protection mechanism. Exploiting this vulnerability allows an attacker to circumvent the SPI ROM protection mechanism by modifying the data...

The vulnerability of the Ruijie Reyee OS operating system, related to the exposure of resources for unauthorized parties, allows a violator to obtain the device serial number.

The vulnerability of the Ruijie Reyee OS is related to the exposure of resources for unauthorized parties. Exploiting this vulnerability allows a remote attacker to obtain the device’s serial number by intercepting Wi-Fi signals...

The vulnerability of the Ruijie Reyee OS, related to deficiencies in data storage, allows a perpetrator to match the device serial number with the user’s phone number and a portion of the email address.

The vulnerability of the Ruijie Reyee OS is related to deficiencies in the storage of service data. Exploiting this vulnerability allows a malicious actor to match the device serial number with the user’s phone number and part of the email address...

CVE-2024-12655

A vulnerability, which was classified as problematic, has been found in FabulaTech USB over Network 6.0.6.1. Affected by this issue is the function 0x220420 in the library ftusbbus2.sys of the component IOCT Handler. The manipulation leads to null pointer dereference. It is possible to launch the...

PT-2024-17696 · Fabulatech · Fabulatech Usb Over Network

Name of the Vulnerable Software and Affected Versions: FabulaTech USB over Network version 6.0.6.1 Description: A problem was found in the function 0x220448 in the library ftusbbus2.sys of the component IOCT Handler, leading to null pointer dereference. The attack must be approached locally. The...

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP3 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2023-52524: net: nfc: llcp: Add lock when modifying device list bsc1220927. CVE-2024-49925: fbdev: efifb: Register sysfs groups through driver core bsc1232224...

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2023-52524: Fixed possible corruption in nfc/llcp bsc1220927. CVE-2024-49925: fbdev: efifb: Register sysfs groups through driver core bsc1232224 CVE-2024-50089:...

OESA-2024-2535 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: usb: typec: altmode should keep reference to parent The altmode device release refers to its parent device, but without keeping a reference to it. When registeri...

CVE-2024-50267

...

CVE-2024-50268

...

CVE-2024-50269

...

CVE-2024-50150

...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : hplip (SUSE-SU-2024:4076-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:4076-1 advisory. - hpmud: sanitize printer serial number bsc1209401 Tenable has extracted the preceding description block...

Schneider Electric PowerChute Serial Shutdown 授权问题漏洞

Schneider Electric PowerChute Serial Shutdown is a UPS management, normal shutdown, and energy management software from Schneider Electric France. An authorization issue vulnerability exists in Schneider Electric PowerChute Serial Shutdown version v1.2.0.301 and prior versions, which stems from...