PHOENIX CONTACT CHARX SEC Input Validation Error Vulnerability

PHOENIX CONTACT CHARX SEC is a series of AC charge controllers from PHOENIX CONTACT, Germany. An input validation error vulnerability exists in PHOENIX CONTACT CHARX SEC-3000 versions prior to v1.5.1, which stems from incorrect input validation and allows an unauthenticated local attacker to...

The vulnerability of the microprogrammed software of iDRAC8 controllers, related to improper verification of consistency in input data, allows a intruder to gain control over the basic operating system.

The vulnerability of the microprogrammed software of iDRAC8 controllers is related to improper verification of consistency in input data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain control over the basic operating system...

OMRON Machine automation controller NJ series Security breaches

Omron Machine automation controller NJ series is a series of machine controllers for logic sequences and motion from Omron Japan. A security vulnerability exists in Omron Machine automation controller NJ series. An attacker can exploit this vulnerability to access arbitrary files or execute...

VMware Issues Security Patches for ESXi, Workstation, and Fusion Flaws

VMware has released patches to address four security flaws impacting ESXi, Workstation, and Fusion, including two critical flaws that could lead to code execution. Tracked as CVE-2024-22252 and CVE-2024-22253, the vulnerabilities have been described as use-after-free bugs in the XHCI USB...

Aruba Networks ArubaOS Security Vulnerabilities

Aruba Networks ArubaOS is an operating system for Aruba Mobility-Defined Networks, including Mobility Controllers and Mobility Access Switches, from Aruba Networks, Inc. A security vulnerability exists in Aruba Networks ArubaOS that originates from an authenticated command injection vulnerability...

Aruba Networks ArubaOS Security Vulnerabilities

Aruba Networks ArubaOS is an operating system for Aruba Mobility-Defined Networks, including Mobility Controllers and Mobility Access Switches, from Aruba Networks, Inc. A security vulnerability exists in Aruba Networks ArubaOS that originates from an authenticated command injection vulnerability...

Aruba Networks ArubaOS Security Vulnerabilities

Aruba Networks ArubaOS is an operating system for Aruba Mobility-Defined Networks, including Mobility Controllers and Mobility Access Switches, from Aruba Networks, Inc. A security vulnerability exists in Aruba Networks ArubaOS that originates from an authenticated command injection vulnerability...

Aruba Networks ArubaOS Security Vulnerabilities

Aruba Networks ArubaOS is an operating system for Aruba Mobility-Defined Networks including Mobility Controllers and Mobility Access Switches from Aruba Networks, Inc. A security vulnerability exists in Aruba Networks ArubaOS that stems from certain configurations of ArubaOS that could result in...

Spoofing

In the Linux kernel, the following vulnerability has been resolved: PCI/ASPM: Fix deadlock when enabling ASPM A last minute revert in 6.7-final introduced a potential deadlock when enabling ASPM during probe of Qualcomm PCIe controllers as reported by lockdep:...

CVE-2024-26605

In the Linux kernel, the following vulnerability has been resolved: PCI/ASPM: Fix deadlock when enabling ASPM A last minute revert in 6.7-final introduced a potential deadlock when enabling ASPM during probe of Qualcomm PCIe controllers as reported by lockdep:...

CVE-2024-26605

A flaw was found in the Linux kernel, where a deadlock scenario was triggered when enabling Active State Power Management ASPM during the probe of Qualcomm PCIe controllers. This deadlock was identified by lockdep and stemmed from a recursive locking scenario. This issue occurred when a task...

CVE-2024-26605 PCI/ASPM: Fix deadlock when enabling ASPM

In the Linux kernel, the following vulnerability has been resolved: PCI/ASPM: Fix deadlock when enabling ASPM A last minute revert in 6.7-final introduced a potential deadlock when enabling ASPM during probe of Qualcomm PCIe controllers as reported by lockdep:...

CVE-2024-26605

CVE-2024-26605 relates to a Linux kernel issue where a last‑minute revert in 6.7-final could deadlock when enabling ASPM during probe of Qualcomm PCIe controllers. The root cause is a potential recursive locking of pci_bus_sem between a read lock and a write/lock path, leading to a deadlock, evid...

CVE-2024-26605 PCI/ASPM: Fix deadlock when enabling ASPM

In the Linux kernel, the following vulnerability has been resolved: PCI/ASPM: Fix deadlock when enabling ASPM A last minute revert in 6.7-final introduced a potential deadlock when enabling ASPM during probe of Qualcomm PCIe controllers as reported by lockdep:...

Intel Ethernet Adapters and Intel Ethernet Controller I225 Manageability firmware security vulnerability

Intel Ethernet Adapters and Intel Ethernet Controllers are products of Intel Corporation, USA. Intel Ethernet Adapters are Ethernet adapters. Intel Ethernet Controllers are Ethernet controllers. Intel Ethernet Adapters and Intel Ethernet Controllers are products of Intel Corporation. A security...

CVE-2023-6408

Summary (CVE-2023-6408) : The vulnerability is in Schneider Electric EcoStruxure Control Expert, EcoStruxure Process Expert, and Modicon M340/M580 PLCs, caused by improper enforcement of message integrity during transmission in a communication channel . This enables a Man-in-the-Middle attack tha...

CVE-2023-28396

Improper access control in firmware for some IntelR ThunderbolTM Controllers versions before 41 may allow a privileged user to enable denial of service via local access...

CVE-2023-28396

Improper access control in firmware for some IntelR ThunderbolTM Controllers versions before 41 may allow a privileged user to enable denial of service via local access...

Intel Thunderbolt Controllers Security Vulnerability

Intel Thunderbolt controller is a connector standard published by Intel, a U.S.-based company, that supports both copper and fiber-optic media and is intended to be used as a common bus between computers and other devices. A security vulnerability previously existed in Intel ThunderboltTM...

The vulnerability of the microprogramming software of AMI MegaRAC SP-X controllers allows a perpetrator to compromise the confidentiality, integrity, and accessibility of data.

The vulnerability of the microprogramming software of AMI MegaRAC SP-X controllers relates to reading data outside the buffer in memory. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of data...