295 matches found
EUVD-2026-42908
The iDirect iQ200 exposes the /api/identity and /api/ REST API endpoints without authentication. An unauthenticated attacker with network access can retrieve sensitive device information including the serial number, Device ID DID, Terminal Private Key identifier TPK, MAC address, and exact firmwa...
MINI-M65V-29QC-RRW4
Bulletin has no description...
MINI-CP6X-4435-5GC6
Bulletin has no description...
MINI-RFJV-H29V-68J7
Bulletin has no description...
MINI-9F55-V8QM-M2GW
Bulletin has no description...
MINI-R746-H9M3-Q6H9
Bulletin has no description...
MINI-R26X-4V53-CW6G
Bulletin has no description...
MINI-RP4Q-V5MX-X2CQ
Bulletin has no description...
CVE-2026-53283
CVE-2026-53283 concerns the Linux kernel AMD IOMMU driver. The issue arises when the inlined check path in __rlookup_amd_iommu() performs an out-of-bounds read on rlookup_table[devid] for a PCI device whose BDF isn’t described by IVRS. Prior to the commit that changed kvalloc() usage, the over-re...
CVE-2026-9219 Setracker2 Children's Smartwatch Ecosystem Generation of Predictable Numbers or Identifiers
Setracker2 Android Companion App com.tgelec.setracker versions 3.1.5 and prior have a predictable registration ID derived from IMEI. The enrollment system lacks additional authentication before assignment. If an attacker is able to obtain the registration ID, they would be able to arbitrarily...
Linux Distros Unpatched Vulnerability : CVE-2026-53053
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - iommu/amd: Fix clonealias to use the original device's devid Currently clonealias assumes first argument pdev is always the original device pointer. This functi...
CVE-2026-53053
The CVE-2026-53053 issue lies in the Linux kernel’s iommu/amd driver where clone_alias() incorrectly uses the wrong device ID (devid) for alias devices, risking propagation of wrong or stale Device Table Entries (DTEs). The fix passes the original pdev as opaque data to both clone_alias() and pci...
MINI-WV69-G38C-3CQV
Bulletin has no description...
MINI-866V-RJMX-QJM5
Bulletin has no description...
MINI-C28C-X2W5-3XRG
Bulletin has no description...
PT-2026-51412
Name of the Vulnerable Software and Affected Versions Capgo versions prior to 12.128.2 Description A rate limit bypass exists in the 'channel self' endpoint. Attackers can circumvent rate limiting by rotating the user-controlled device id parameter, enabling them to send multiple requests per...
MINI-3VHP-FR42-JMFW
Bulletin has no description...
MINI-MV3C-CC26-6GR9
Bulletin has no description...
MINI-WX4M-2MH6-RRRG
Bulletin has no description...
MINI-XR49-M85W-9JMX
Bulletin has no description...