EUVD-2017-17807

Malware in sbrugna...

PT-2025-21779 · Unknown · Tiiwee X1 Alarm System

Name of the Vulnerable Software and Affected Versions: Tiiwee X1 Alarm System version TWX1HAKV2 Description: The issue allows for authentication bypass through capture-replay, resulting in physical access to protected facilities without triggering an alarm. Recommendations: For Tiiwee X1 Alarm...

CVE-2024-38890

CVE-2024-38890 affects Horizon Business Services Inc. Caterease Software versions 16.0.1.1663 through 24.0.1.2405 (potentially later) and enables a local attacker to bypass authentication via a capture-replay attack due to insufficient protection against capture-replay. The Red Hat, NVD, CVE reco...

Path traversal

Elemental Path's CogniToys Dino smart toys through firmware version 0.0.794 do not provide sufficient protections against capture-replay attacks, allowing an attacker on the network to replay VoIP traffic between a Dino device and remote server to any other Dino device...

CVE-2017-8865

CVE-2017-8865 affects Elemental Path’s CogniToys Dino, with firmware version 0.0.794 and earlier. The vulnerability allows an attacker on the network to replay VoIP traffic between a Dino device and a remote server to another Dino device, indicating a capture-replay flaw in the Dino’s communicati...

CVE-2017-8865

Elemental Path's CogniToys Dino smart toys through firmware version 0.0.794 do not provide sufficient protections against capture-replay attacks, allowing an attacker on the network to replay VoIP traffic between a Dino device and remote server to any other Dino device...