16 matches found
EUVD-2020-0117
Malware in sbrugna...
EUVD-2024-48173
Malicious code in bioql PyPI...
EUVD-2023-38163
Malicious code in bioql PyPI...
EUVD-2023-37893
Malicious code in bioql PyPI...
CVE-2025-24896
Misskey is an open source, federated social media platform. Starting in version 12.109.0 and prior to version 2025.2.0-alpha.0, a login token named token is stored in a cookie for authentication purposes in Bull Dashboard, but this remains undeleted even after logout is performed. The primary...
CVE-2024-7205
CVE-2024-7205 affects eWeLink Cloud Service, specifically the homepage module prior to version 2.19.0. When a device is shared, a secondary user can take over control as the primary user by disclosed unnecessary device-sensitive information. The CVSS data in the initial document indicates high im...
PT-2024-38166
Name of the Vulnerable Software and Affected Versions: eWeLink Cloud Service versions prior to 2.19.0 eWeLink Cloud Service versions up to 2.18.x Description: When a device is shared, the homepage module in eWeLink Cloud Service allows a secondary user to take over devices as a primary user by...
eWeLink 安全漏洞
eWeLink is a smart home assistant from eWeLink, Inc. A security vulnerability exists in eWeLink versions prior to 2.19.0, which stems from a vulnerability that allows a secondary user to take over a device to become the primary user by sharing unnecessary sensitive information about the device wh...
CVE-2023-34044 Information disclosure vulnerability in bluetooth device-sharing functionality
VMware Workstation 17.x prior to 17.5 and Fusion13.x prior to 13.5 contain an out-of-bounds read vulnerability that exists in the functionality for sharing host Bluetooth devices with the virtual machine. A malicious actor with local administrative privileges on a virtual machine may be able to...
CVE-2023-33741
Macrovideo v380pro v1.4.97 shares the device id and password when sharing the device...
PT-2023-24466 · Unknown · Macrovideo V380Pro
Name of the Vulnerable Software and Affected Versions: Macrovideo v380pro version 1.4.97 Description: The issue concerns the sharing of device id and password when a device is shared. Recommendations: For Macrovideo v380pro version 1.4.97, consider restricting device sharing until a fix is...
CVE-2023-20869
VMware Workstation 17.x and VMware Fusion 13.x contain a stack-based buffer-overflow vulnerability that exists in the functionality for sharing host Bluetooth devices with the virtual machine...
VMware Workstation和VMware Fusion 缓冲区错误漏洞
VMware Workstation and VMware Fusion are both products of VMware, Inc. VMware Workstation is a suite of virtual machine software that provides the ability to run multiple different operating systems simultaneously. VMware Workstation is a suite of virtual machine software that provides the abilit...
CVE-2023-20869
CVE-2023-20869 is a stack-based buffer overflow in VMware Workstation 17.x and VMware Fusion 13.x related to sharing host Bluetooth devices with the VM. Public reports and Vulners-derived references confirm this vulnerability, which can allow a local attacker with VM-level privileges to execute c...
CVE-2023-20870
VMware Workstation and Fusion contain an out-of-bounds read vulnerability that exists in the functionality for sharing host Bluetooth devices with the virtual machine...
KCodes NetUSB kernel driver is vulnerable to buffer overflow
Overview KCodes NetUSB is vulnerable to a buffer overflow via the network that may result in a denial of service or code execution. Description KCodes NetUSB is a Linux kernel module that provides USB over IP. It is used to provide USB device sharing on a home user network.CWE-120: Buffer Copy...