CVE-2025-67015

Incorrect access control in Comtech EF Data CDM-625 / CDM-625A Advanced Satellite Modem with firmware v2.5.1 allows attackers to change the Administrator password and escalate privileges via sending a crafted POST request to /Forms/adminaccess1...

PT-2025-53595

Name of the Vulnerable Software and Affected Versions Comtech EF Data CDM-625 / CDM-625A Advanced Satellite Modem version 2.5.1 Description A flaw in access control within the Comtech EF Data CDM-625 / CDM-625A Advanced Satellite Modem firmware allows attackers to modify the Administrator passwor...

CVE-2025-67015

CVE-2025-67015 affects the Comtech EF Data CDM-625 / CDM-625A Advanced Satellite Modem with firmware v2.5.1. Root cause is improper access control that lets an unauthenticated attacker modify the Administrator password and escalate privileges by sending a crafted POST to /Forms/admin_access_1. Im...

CVE-2025-48632

In setDisplayName of AssociationRequest.java, there is a possible way to cause CDM associations to persist after the user has disassociated them due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is n...

CVE-2025-48632

In setDisplayName of AssociationRequest.java, there is a possible way to cause CDM associations to persist after the user has disassociated them due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is n...

CVE-2025-48632

In setDisplayName of AssociationRequest.java, there is a possible way to cause CDM associations to persist after the user has disassociated them due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is n...

PT-2025-43505

In setDisplayName of AssociationRequest.java, there is a possible way to cause CDM associations to persist after the user has disassociated them due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is n...

EUVD-2018-17530

Malware in sbrugna...

EUVD-2016-3910

Malware in sbrugna...

EUVD-2016-2413

Malware in sbrugna...

EUVD-2025-23801

Malicious code in bioql PyPI...

Google Android elevation of privilege vulnerability (CNVD-2025-23026)

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability that is caused by a logic error in the setDisplayName function in AssociationRequest.java that causes the application to retain the CDM association. An...

CVE-2025-48522

In setDisplayName of AssociationRequest.java, there is a possible way for an app to retain CDM association due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2025-48522

In setDisplayName of AssociationRequest.java, there is a possible way for an app to retain CDM association due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

PT-2025-36049

Name of the Vulnerable Software and Affected Versions: AssociationRequest.java affected versions not specified Description: A logic error in the setDisplayName function within the AssociationRequest.java file may allow an application to retain CDM association. This could potentially lead to local...

CVE-2025-21473

Memory corruption when using Virtual cdm Camera Data Mover to write registers...

CVE-2025-21473

CVE-2025-21473 describes a memory corruption vulnerability in Qualcomm chipsets when using Virtual cdm (Camera Data Mover) to write registers. The root cause is memory corruption from register writes, with references across sources noting a TOCTOU race aspect in Camera_Linux. Impact is described ...

CVE-2025-21473 Time-of-check Time-of-use (TOCTOU) Race Condition in Camera_Linux

Memory corruption when using Virtual cdm Camera Data Mover to write registers...

CVE-2025-21461 Out-of-bounds Write in Camera_Linux

Memory corruption when programming registers through virtual CDM...

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm, an American company. A security vulnerability exists in Qualcomm Chipsets that stems from a memory corruption that could result from writing to registers using Virtual cdm...