PT-2024-9567 · Ruijie · Ruijie Reyee Os

Name of the Vulnerable Software and Affected Versions: Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x Description: The issue is related to insufficient storage of service data in the Ruijie Reyee OS, which could allow a remote attacker to correlate a device's serial number with...

openSUSE Security Advisory (SUSE-SU-2024:4089-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security update for hplip

This update for hplip fixes the following issues: hpmud: sanitize printer serial number bsc1209401 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product:...

SUSE-SU-2024:4089-1 Security update for hplip

This update for hplip fixes the following issues: - hpmud: sanitize printer serial number bsc1209401...

PT-2024-41015 · Hewlett Packard · Hplip

Name of the Vulnerable Software and Affected Versions: hplip affected versions not specified Description: The issue is related to the hpmud component of hplip, where the printer serial number is not properly sanitized. Recommendations: At the moment, there is no information about a newer version...

openSUSE Security Advisory (SUSE-SU-2024:4076-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security update for hplip

This update for hplip fixes the following issues: hpmud: sanitize printer serial number bsc1209401 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product:...

SUSE-SU-2024:4076-1 Security update for hplip

This update for hplip fixes the following issues: - hpmud: sanitize printer serial number bsc1209401...

PT-2024-41014 · Hewlett Packard · Hplip

Name of the Vulnerable Software and Affected Versions: hplip affected versions not specified Description: The issue is related to the hpmud component of hplip, where the printer serial number is not properly sanitized. Recommendations: At the moment, there is no information about a newer version...

kernel: USB: serial: mos7840: fix crash on resume

In the Linux kernel, the following vulnerability has been resolved: USB: serial: mos7840: fix crash on resume Since commit c49cfa917025 "USB: serial: use generic method if no alternative is provided in usb serial layer", USB serial core calls the generic resume implementation when the driver has...

Moderate: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

The vulnerability of the Linux operating system’s kernel USB component, which allows a hacker to trigger a service failure

The vulnerability of the Linux operating system’s kernel USB component is related to errors in resource management in the plvendorreq function. Exploiting this vulnerability can allow an attacker to cause a service failure...

Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: bpf: Fix overrunning reservations in ringbuf CVE-2024-41009 kernel: USB: serial: mos7840: fix crash on resume CVE-2024-42244 kernel: cxl/port: Fix use-after-free, permit out-of-order...

CGA-F92W-P726-49XR

Bulletin has no description...

CVE-2024-8355

Visteon Infotainment System DeviceManager iAP Serial Number SQL Injection Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected installations of Visteon Infotainment system. Authentication is not required to exploit this vulnerability. The...

Visteon Infotainment SQL注入漏洞

Visteon Infotainment is an automotive infotainment system from Visteon Corporation. Visteon Infotainment suffers from a SQL injection vulnerability that stems from improper validation of user-supplied strings when DeviceManager parses iAP serial numbers, which could lead to an attacker executing...

CVE-2024-50267

In the Linux kernel, the following vulnerability has been resolved: USB: serial: ioedgeport: fix use after free in debug printk The "devdbg&urb-;dev-dev, ..." which happens after usbfreeurburb is a use after free of the "urb" pointer. Store the "dev" pointer at the start of the function to avoid...

CVE-2024-7517 Privileged escalation via crafted use of portcfg command

A command injection vulnerability in Brocade Fabric OS before 9.2.0c, and 9.2.1 through 9.2.1a on IP extension platforms could allow a local authenticated attacker to perform a privileged escalation via crafted use of the portcfg command. This specific exploitation is only possible on IP Extensio...

CVE-2024-7517 Privileged escalation via crafted use of portcfg command

A command injection vulnerability in Brocade Fabric OS before 9.2.0c, and 9.2.1 through 9.2.1a on IP extension platforms could allow a local authenticated attacker to perform a privileged escalation via crafted use of the portcfg command. This specific exploitation is only possible on IP Extensio...

CVE-2024-7517

CVE-2024-7517 concerns a local, privileged escalation in Brocade Fabric OS prior to 9.2.0c and in 9.2.1–9.2.1a on IP Extension platforms (7810/7840/7850 or SX-6 blade on X6/X7). Exploitation requires an authenticated user on SSH/serial to craft portcfg usage. Root cause is a command-injection vul...