CVE-2023-38255

A potential attacker with or without cookie theft access to the device would be able to include malicious code XSS when uploading new device configuration that could affect the intended function of the device...

PT-2022-36296 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: drbd versions prior to v5.10.156 Description: A use after free issue exists in the drbd create device function. The actual impact and attack plausibility have not yet been proven. Recommendations: For versions prior to v5.10.156, update to...

Android Resource Management Error Vulnerability (CNVD-2020-44616)

Android is a Linux-based open source operating system from Google and the Open Handheld Alliance OHA. A resource management error vulnerability exists in the cdevget of the chardev.c file in Android. An attacker can exploit this vulnerability to elevate privileges...

CVE-2019-19194

The Bluetooth Low Energy Secure Manager Protocol SMP implementation on Telink Semiconductor BLE SDK versions before November 2019 for TLSR8x5x through 3.4.0, TLSR823x through 1.3.0, and TLSR826x through 3.3 devices installs a zero long term key LTK if an out-of-order link-layer encryption request...

MiniUPnP MiniSSDPd Resource Management Error Vulnerability

MiniSSDPd is a daemon for managing SSDPs on Posix systems. A resource management error vulnerability exists in the 'updateDevice' function of the minissdpd.c file in MiniUPnP MiniSSDPd versions 1.4 and 1.5. The vulnerability stems from the mismanagement of system resources e.g., memory, disk spac...