CVE-2025-1058

CWE-494: Download of Code Without Integrity Check vulnerability exists that could render the device inoperable when malicious firmware is downloaded...

PT-2025-6826

Name of the Vulnerable Software and Affected Versions ASCO 5310 Single-Channel Remote Annunciator versions all Description A Download of Code Without Integrity Check issue exists, which could render the device inoperable when malicious firmware is downloaded. Recommendations For all versions, at...

CVE-2022-30330

In the KeepKey firmware before 7.3.2,Flaws in the supervisor interface can be exploited to bypass important security restrictions on firmware operations. Using these flaws, malicious firmware code can elevate privileges, permanently make the device inoperable or overwrite the trusted bootloader...

MOXA AWK-1131A Ethernet 802LLC Protocol Denial of Service Vulnerability

Moxa is a leader in industrial automation, providing complete industrial equipment connectivity, industrial computer and industrial network solutions, and is committed to promoting and practicing the Industrial Internet together. A denial of service vulnerability exists in the MOXA AWK-1131A...

Command injection

The MXQ TV Box 4.4.2 Android device with a build fingerprint of MBX/m201N/m201N:4.4.2/KOT49H/20160106:user/test-keys contains the Android framework with a package name of android versionCode=19, versionName=4.4.2-20170213 that contains an exported broadcast receiver application component that, wh...

CVE-2018-13307

System command injection in fromNtp in TOTOLINK A3002RU version 1.0.8 allows attackers to execute system commands via the "ntpServerIp2" POST parameter. Certain payloads cause the device to become permanently inoperable...