CVE-2023-4468 Poly Trio 8500/Trio 8800/Trio C60 Poly Lens Management Cloud Registration authorization

A vulnerability was found in Poly Trio 8500, Trio 8800 and Trio C60. It has been classified as problematic. This affects an unknown part of the component Poly Lens Management Cloud Registration. The manipulation leads to missing authorization. It is possible to launch the attack on the physical...

CVE-2023-4467 Poly Trio 8800 Test Automation Mode backdoor

A vulnerability was found in Poly Trio 8800 7.2.6.0019 and classified as critical. Affected by this issue is some unknown functionality of the component Test Automation Mode. The manipulation leads to backdoor. It is possible to launch the attack on the physical device. The exploit has been...

The vulnerability of the libusrsctp library in the Mozilla Firefox browser allows a hacker to exploit this vulnerable library and carry out an attack on a device.

The vulnerability of the libusrsctp library in the Mozilla Firefox browser is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a malicious actor to trigger the use of the vulnerable library and carry out an attack on the device...

CVE-2022-3349

A vulnerability was found in Sony PS4 and PS5. It has been classified as critical. This affects the function UVFATreadupcasetable of the component exFAT Handler. The manipulation of the argument dataLength leads to heap-based buffer overflow. It is possible to launch the attack on the physical...

Sony PlayStation 缓冲区错误漏洞

The Sony PlayStation is a series of home game consoles from the Japanese company Sony Sony. A buffer overflow vulnerability exists in Sony PS4 and PS5, which stems from a lack of length validation of the parameter dataLength parameter and can be exploited by an attacker to launch an attack agains...

CVE-2020-26557

Mesh Provisioning in the Bluetooth Mesh profile 1.0 and 1.0.1 may permit a nearby device without possession of the AuthValue used in the provisioning protocol to determine the AuthValue via a brute-force attack unless the AuthValue is sufficiently random and changed each time...

Cisco SD-WAN Input Validation Error Vulnerability

Cisco SD-WAN is a highly secure cloud-scale architecture that is open, programmable, and scalable from Cisco USA. Cisco SD-WAN suffers from an input validation error vulnerability that allows an unauthenticated, remote attacker to execute an attack on an affected device...

CVE-2019-15218

An issue was discovered in the Linux kernel before 5.1.8. There is a NULL pointer dereference caused by a malicious USB device in the drivers/media/usb/siano/smsusb.c driver...

Linux kernel local denial of service vulnerability (CNVD-2017-33100)

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A local denial of service vulnerability exists in the 'imonprobe' function in the drivers/media/rc/imon.c file in Linux kernel 4.13.11 and earlier versions. A local attacker c...

SUSE-SU-2016:1707-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 11 SP4 Realtime kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2015-1339: Memory leak in the cusechannelrelease function in fs/fuse/cuse.c in the Linux kernel allowed local users to cause a denial of service...

CVE-2015-8324

The ext4 implementation in the Linux kernel before 2.6.34 does not properly track the initialization of certain data structures, which allows physically proximate attackers to cause a denial of service NULL pointer dereference and panic via a crafted USB device, related to the ext4fillsuper...