253 matches found
CVE-2024-29206
An Improper Access Control could allow a malicious actor authenticated in the API to enable Android Debug Bridge ADB and make unsupported changes to the system. Affected Products: UniFi Connect EV Station Version 1.1.18 and earlier UniFi Connect EV Station Pro Version 1.1.18 and earlier UniFi...
CVE-2024-29206
An Improper Access Control could allow a malicious actor authenticated in the API to enable Android Debug Bridge ADB and make unsupported changes to the system. Affected Products: UniFi Connect EV Station Version 1.1.18 and earlier UniFi Connect EV Station Pro Version 1.1.18 and earlier UniFi...
CVE-2024-29206
CVE-2024-29206 concerns multiple Ubiquiti UniFi devices. The issue is described as an improper access control that, if an attacker is authenticated in the API, can enable Android Debug Bridge (ADB) and make unsupported changes to the system. Affected products and versions include: UniFi Connect E...
PT-2024-20291 · Telefonica · Movistar 4G Router
Name of the Vulnerable Software and Affected Versions: Movistar 4G router version S WLD71-T1 v2.0.201820 Description: The issue concerns an unprotected primary channel on the Movistar 4G router, which has the 'adb' service open on port 5555. This provides access to a shell with root privileges,...
CVE-2024-27350
Amazon Fire OS 7 before 7.6.6.9 and 8 before 8.1.0.3 allows Fire TV applications to establish local ADB Android Debug Bridge connections. NOTE: some third parties dispute whether this has security relevance, because an ADB connection is only possible after the non-default ADB Debugging option is...
Amazon Fire OS Security Vulnerability
Amazon Fire OS is a suite of Android-based mobile operating systems developed by Amazon.com, Inc. that run on Amazon devices. A security vulnerability exists in Amazon Fire OS versions 7.x up to and including 7.6.6.9, and 8.x up to and including 8.1.0.3, which stems from a vulnerability that allo...
CVE-2024-27350
Summary: Amazon Fire OS versions 7.x and 8.x suffer a local ADB exposure that allows Fire TV apps to establish local ADB connections. This requires enabling the non-default ADB Debugging option and approving the connection prompt. Affected versions: Fire OS 7.0.0–7.6.6.8 (fixed in 7.6.6.9 or late...
PT-2024-21841 · Amazon · Amazon Fire Os
Name of the Vulnerable Software and Affected Versions: Amazon Fire OS versions 7.0.0 through 7.6.6.8 Amazon Fire OS versions 8.0.0 through 8.1.0.2 Description: The issue allows Fire TV applications to establish local ADB Android Debug Bridge connections. This is only possible after the non-defaul...
The vulnerability of the Android Debug Bridge (ADB) component of Google Chrome browser on the Chrome OS allows a hacker to bypass security restrictions.
The vulnerability of the Android Debug Bridge ADB component in Google Chrome browser for the Chrome OS is related to deficiencies in access control. Exploiting this vulnerability could allow a hacker to bypass security restrictions...
CVE-2023-3742
Insufficient policy enforcement in ADB in Google Chrome on ChromeOS prior to 114.0.5735.90 allowed a local attacker to bypass device policy restrictions via physical access to the device. Chromium security severity: High...
CVE-2023-41255
The vulnerability allows an unprivileged user with access to the subnet of the TPC-110W device to gain a root shell on the device itself abusing the lack of authentication of the ‘su’ binary file installed on the device that can be accessed through the ADB Android Debug Bridge protocol exposed on...
CVE-2023-41255
CVE-2023-41255 affects the TPC-110W device (Bosch context appears in sources). The issue allows an unprivileged user with subnet access to obtain a root shell by abusing the lack of authentication of the su binary exposed via ADB (Android Debug Bridge). The connected documents provide this core t...
PT-2023-27872 · Google · Android Debug Bridge
Name of the Vulnerable Software and Affected Versions: TPC-110W device affected versions not specified Description: The issue allows an unprivileged user with access to the subnet of the device to gain a root shell on the device itself by exploiting the lack of authentication of the su binary fil...
PT-2023-29729 · Google · Android
Name of the Vulnerable Software and Affected Versions: Android affected versions not specified Description: The issue allows a low privileged user with access to the device when locked in Kiosk mode to install an arbitrary Android application. This can be leveraged to access critical device...
Bosch ctrlX HMI Web Panel WR21 Security Vulnerability
Bosch ctrlX HMI Web Panel WR21 is an HMI panel from Bosch Germany. A security vulnerability exists in Bosch ctrlX HMI Web Panel WR21, which originated from a vulnerability that allows a low-privileged attacker to gain root privileges by modifying critical system properties and exposing the ADB...
PT-2023-28842 · Google · Android Debug Bridge +1
Name of the Vulnerable Software and Affected Versions: Android affected versions not specified Description: The issue allows a low-privileged application to modify a critical system property, enabling the exposure of the Android Debug Bridge ADB protocol on the network. This can be exploited to...
TeleAdapt RoomCast TA-2400 Elevation of Privilege Vulnerability
The TeleAdapt RoomCast TA-2400 is an all-in-one, self-contained, top-of-the-line content streaming box for guest rooms from TeleAdapt UK. The TeleAdapt RoomCast TA-2400 suffers from an elevation of privilege vulnerability, which is caused by improper privilege management in the Android Debug Brid...
Apache ShardingSphere Deserialization Vulnerability
The TeleAdapt RoomCast TA-2400 is an all-in-one, self-contained, top-of-the-line content streaming box for guest rooms from TeleAdapt UK. The TeleAdapt RoomCast TA-2400 suffers from an elevation of privilege vulnerability that is caused by improper access control of the Android Debug Bridge ADB. ...
CVE-2023-33745
TeleAdapt RoomCast TA-2400 1.0 through 3.1 is vulnerable to Improper Privilege Management: from the shell available after an adb connection, simply entering the su command provides root access without requiring a password...
CVE-2023-33743
TeleAdapt RoomCast TA-2400 1.0 through 3.1 is vulnerable to Improper Access Control; specifically, Android Debug Bridge adb is available...