6175 matches found
Zephyr USB Mass Storage Buffer Overflow Vulnerability
Zephyr is an open source, small, scalable real-time operating system from the Linux Foundation in the U.S. USB Mass Storage is one of the USB mass storage components. A buffer overflow vulnerability exists in USB Mass Storage in Zephyr versions 1.14.1 and later and 2.1.0 and later. An attacker...
CVE-2020-10019
USB DFU has a potential buffer overflow where the requested length wLength is not checked against the buffer size. This could be used by a malicious USB host to exploit the buffer overflow. See NCC-ZEP-002 This issue affects: zephyrproject-rtos zephyr version 1.14.1 and later versions. version...
Linux kernel denial of service vulnerability (CNVD-2020-28264)
Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A security vulnerability exists in the drivers/spi/spi-dw.c file in Linux kernel versions prior to 5.4.17. An attacker can exploit this vulnerability to cause a denial...
PT-2020-5402 · Freerdp +6 · Freerdp +6
Name of the Vulnerable Software and Affected Versions: FreeRDP versions prior to 2.1.0 Description: The issue is related to an out-of-bound read in irp functions, specifically in parallel process irp create, serial process irp create, drive process irp write, printer process irp write, rdpei recv...
UBUNTU-CVE-2020-12769
An issue was discovered in the Linux kernel before 5.4.17. drivers/spi/spi-dw.c allows attackers to cause a panic via concurrent calls to dwspiirq and dwspitransferone, aka CID-19b61392c5a8...
Ubiquiti Networks UniFi Cloud Key Access Control Error Vulnerability
Ubiquiti Networks UniFi Cloud Key is a secret key device that supports management of UniFi networks from Ubiquiti Networks USA. An Access Control Error vulnerability exists in the Ubiquiti Networks UniFi Cloud Key gen2 and Cloud Key gen2 Plus using firmware version 1.1.10 and earlier, which can b...
CVE-2020-8157
UniFi Cloud Key firmware = v1.1.10 for Cloud Key gen2 and Cloud Key gen2 Plus contains a vulnerability that allows unrestricted root access through the serial interface UART...
CVE-2020-8157
UniFi Cloud Key firmware = v1.1.10 for Cloud Key gen2 and Cloud Key gen2 Plus contains a vulnerability that allows unrestricted root access through the serial interface UART...
Linux kernel resource management error vulnerability (CNVD-2020-27234)
Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A resource management error vulnerability exists in the usbsgcancel file in drivers/usb/core/message.c in versions of Linux kernel prior to 5.6.8. The vulnerability...
kernel: Null pointer dereference in the sound/usb/line6/driver.c
A NULL pointer dereference flaw was found in the way the Line 6 POD USB driver in the Linux kernel handled disconnection. This flaw allows an attacker with physical access to the system to crash the system...
kernel: Null pointer dereference in the sound/usb/line6/pcm.c
A NULL pointer dereference flaw was found in the way the LINE6 drivers in the Linux kernel allocated buffers for USB packets. This flaw allows an attacker with physical access to the system to crash the system...
kernel: Null pointer dereference in the sound/usb/line6/driver.c
A NULL pointer dereference flaw was found in the way the Line 6 POD USB driver in the Linux kernel handled disconnection. This flaw allows an attacker with physical access to the system to crash the system...
kernel: malicious USB devices can lead to multiple out-of-bounds write
An out-of-bounds write flaw was found in the Linux kernel’s HID drivers. An attacker, able to plug in a malicious USB device, can crash the system or read and write to memory with an incorrect address...
How to Reset Password in Veeam Backup for Microsoft Azure Appliance
Purpose This article documents methods to reset the password of the Veeam Backup for Microsoft Azure service account. Solution Reset Password via The Microsoft Azure portal 1. Open the Microsoft Azure portal. 2. Log in using your Microsoft Azure credentials. 3. Select the virtual machine with Vee...
Huawei HG630 2 Router - Authentication Bypass Vulnerability
Exploit for hardware platform in category web applications Title: Huawei HG630 2 Router - Authentication Bypass Author: Eslam Medhat Vendor Homepage: www.huawei.com Version: HG630 V2 HardwareVersion: VER.B CVE: N/A POC: The default password of this router is the last 8 characters of the device's...
Huawei HG630 2 Router - Authentication Bypass
Title: Huawei HG630 2 Router - Authentication Bypass Date: 2020-04-13 Author: Eslam Medhat Vendor Homepage: www.huawei.com Version: HG630 V2 HardwareVersion: VER.B CVE: N/A POC: The default password of this router is the last 8 characters of the device's serial number which exist in the back of t...
Huawei HG630 2 Router Authentication Bypass
Title: Huawei HG630 2 Router - Authentication Bypass Date: 2020-04-13 Author: Eslam Medhat Vendor Homepage: www.huawei.com Version: HG630 V2 HardwareVersion: VER.B CVE: N/A POC: The default password of this router is the last 8 characters of the device's serial number which exist in the back of t...
Denial Of Service (DoS)
kernel is vulnerable to denial of service. A flaw in the key serial number collision avoidance algorithm of the keyctl subsystem that allowed a local user to cause a denial of service...
You cannot use an USB RNDIS device to connect to a 3G or 4G network in Windows 7 or in Windows Server 2008 R2
You cannot use an USB RNDIS device to connect to a 3G or 4G network in Windows 7 or in Windows Server 2008 R2 Symptoms On a computer that is running Windows 7 or Windows Server 2008 R2, you try to use an USB Remote Network Driver Interface Specification RNDIS device to connect to a 3G or 4G...
Samsung Mobile Device Authorization Issue Vulnerability (CNVD-2020-31813)
Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. Samsung mobile devices have an authorization issue vulnerability that can be exploited by attackers to bypass the lock screen by sending AT commands via USB...