6175 matches found
CVE-2021-38543
TP-Link UE330 USB splitter devices through 2021-08-09, in certain specific use cases in which the device supplies power to audio-output equipment, allow remote attackers to recover speech signals from an LED on the device, via a telescope and an electro-optical sensor, aka a "Glowworm" attack. We...
MIRACASE MHUB500 USB splitters 安全漏洞
MIRACASE MHUB500 USB splitters is a software application. This tool provides powerful functionality for audio output devices, allowing a remote attacker to retrieve code signaling sensors via oscilloscope and electro-optical from LEDs of connected devices. A security vulnerability in MIRACASE...
openSUSE: Security Advisory for virtualbox (openSUSE-SU-2021:1114-1)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Security update for virtualbox (important)
openSUSE Security Update: Security update for virtualbox Announcement ID: openSUSE-SU-2021:1114-1 Rating: important References: 1188045 1188105 1188535 1188536 1188537 1188538 Cross-References: CVE-2021-2409 CVE-2021-2442 CVE-2021-2443 CVE-2021-2454 CVSS scores: CVE-2021-2409 NVD : 8.2...
QEMU 安全漏洞
QEMU Quick Emulator is a set of simulation processor software by Fabrice Bellard, a French individual developer. The software is fast and cross-platform. A security vulnerability exists in QEMU that stems from a flaw found in USB redirection device emulation in versions of QEMU prior to 6.1.0-rc2...
Security update for virtualbox (important)
openSUSE Security Update: Security update for virtualbox Announcement ID: openSUSE-SU-2021:1092-1 Rating: important References: 1188045 1188105 1188535 1188536 1188537 1188538 Cross-References: CVE-2021-2409 CVE-2021-2442 CVE-2021-2443 CVE-2021-2454 CVSS scores: CVE-2021-2409 NVD : 8.2...
openSUSE: Security Advisory for virtualbox (openSUSE-SU-2021:1092-1)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Ecobee Ecobee3 Lite Hardcoded Default Root Credentials Vulnerability
Ecobee Ecobee3 Lite is a Wi-Fi smart thermostat from Ecobee Canada.Ecobee Ecobee3 Lite contains a security vulnerability that could be exploited by an attacker to access the password-protected bootloader environment via the serial console...
CVE-2021-27952
Hardcoded default root credentials exist on the ecobee3 lite 4.5.81.200 device. This allows a threat actor to gain access to the password-protected bootloader environment through the serial console...
CVE-2021-27952
Hardcoded default root credentials exist on the ecobee3 lite 4.5.81.200 device. This allows a threat actor to gain access to the password-protected bootloader environment through the serial console...
Hardcoded credentials
Hardcoded default root credentials exist on the ecobee3 lite 4.5.81.200 device. This allows a threat actor to gain access to the password-protected bootloader environment through the serial console...
CVE-2021-27952
Hardcoded default root credentials exist on the ecobee3 lite 4.5.81.200 device. This allows a threat actor to gain access to the password-protected bootloader environment through the serial console...
GSD-2021-1001481 tty: serial: 8250: serial_cs: Fix a memory leak in error handling path
tty: serial: 8250: serialcs: Fix a memory leak in error handling path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.4.276 by commit...
UVI-2021-1001481 tty: serial: 8250: serial_cs: Fix a memory leak in error handling path
tty: serial: 8250: serialcs: Fix a memory leak in error handling path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.4.276 by commit...
GSD-2021-1001420 tty: serial: 8250: serial_cs: Fix a memory leak in error handling path
tty: serial: 8250: serialcs: Fix a memory leak in error handling path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.240 by commit...
UVI-2021-1001277 tty: serial: 8250: serial_cs: Fix a memory leak in error handling path
tty: serial: 8250: serialcs: Fix a memory leak in error handling path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.52 by commit...
Vizio P65-F1 安全漏洞
The Vizio P65-F1 is a display from Vizio, Inc. A security vulnerability exists in the Vizio P65-F1 version 6.0.31.4-2 and the E50x-E1 version 10.0.31.4-2, which stems from a device that allows a threat actor to execute arbitrary code from a USB drive via the Smart Cast feature, as files on the US...
Ecobee Ecobee3 Lite 信任管理问题漏洞
Ecobee Ecobee3 Lite is a Wi-Fi smart thermostat from Ecobee Canada.Ecobee Ecobee3 Lite contains a security vulnerability that could be exploited by an attacker to access the password-protected bootloader environment via the serial console...
Error:"resource already exists" When Installing a Certificate on NetScaler Appliance
When you install a certificate on the NetScaler appliance, the following error message appears: "resource already exists" Background When you create certificates, each certificate must have a unique serial number. Additionally, the certificate has the following components that help identify a...
CVE-2021-35520
A Buffer Overflow in Thrift command handlers in IDEMIA Morpho Wave Compact and VisionPass devices before 2.6.2 allows physically proximate authenticated attackers to achieve code execution, denial of services, and information disclosure via serial ports...