Lucene search
K

86 matches found

NVD
NVD
added 2025/01/30 8:15 p.m.26 views

CVE-2024-10026

A weak hashing algorithm and small sizes of seeds/secrets in Google's gVisor allowed for a remote attacker to calculate a local IP address and a per-boot identifier that could aid in tracking of a device in certain circumstances...

6.3CVSS0.00218EPSS
Exploits1References4
OSV
OSV
added 2025/01/30 8:15 p.m.13 views

AZL-56192 CVE-2024-10026 affecting package podman 4.1.1-26

A weak hashing algorithm and small sizes of seeds/secrets in Google's gVisor allowed for a remote attacker to calculate a local IP address and a per-boot identifier that could aid in tracking of a device in certain circumstances...

6.3CVSS5.8AI score0.00218EPSS
Exploits1References1
OSV
OSV
added 2025/01/30 8:15 p.m.24 views

UBUNTU-CVE-2024-10026

A weak hashing algorithm and small sizes of seeds/secrets in Google's gVisor allowed for a remote attacker to calculate a local IP address and a per-boot identifier that could aid in tracking of a device in certain circumstances...

6.3CVSS5.8AI score0.00218EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/01/30 7:12 p.m.7 views

CVE-2024-10026 Improved Seeding and Hashing In gVisor

A weak hashing algorithm and small sizes of seeds/secrets in Google's gVisor allowed for a remote attacker to calculate a local IP address and a per-boot identifier that could aid in tracking of a device in certain circumstances...

6.3CVSS6.5AI score0.00218EPSS
Exploits1References4
OSV
OSV
added 2025/01/30 7:12 p.m.8 views

CVE-2024-10026 Improved Seeding and Hashing In gVisor

A weak hashing algorithm and small sizes of seeds/secrets in Google's gVisor allowed for a remote attacker to calculate a local IP address and a per-boot identifier that could aid in tracking of a device in certain circumstances...

6.3CVSS6AI score0.00218EPSS
Exploits1References7
CVE
CVE
added 2025/01/30 7:12 p.m.50 views

CVE-2024-10026

The CVE-2024-10026 issue concerns Google's gVisor: a weak hashing algorithm and small seed/secret sizes. The connected documents confirm this affects gVisor in multiple advisories (e.g., TencentOS Server 4, OSV/Ubuntu entries) and describe that a remote attacker could calculate a local IP address...

6.3CVSS6.5AI score0.00218EPSS
Exploits1References4Affected Software1
CNNVD
CNNVD
added 2025/01/30 12:0 a.m.6 views

Google gVisor 安全漏洞

Google gVisor is a user-space kernel from Google written in the Go language for use in Linux systems. A security vulnerability exists in Google gVisor, which stems from the presence of an information-countable vulnerability that could lead to an attacker being able to count information for use in...

6.3CVSS6AI score0.00218EPSS
Exploits1References3
CVE
CVE
added 2025/01/06 4:25 p.m.59 views

CVE-2025-21615

CVE-2025-21615 affects AAT (Another Activity Tracker) for mobile: versions prior to 1.26 are vulnerable to data exfiltration by other apps installed on the same device. The root cause is data disclosure leakage from the app’s environment, leading to potential confidentiality impact described as h...

5.5CVSS5.5AI score0.00168EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2024/09/18 9:47 a.m.23 views

CVE-2024-46745

In the Linux kernel, the following vulnerability has been resolved: Input: uinput - reject requests with unreasonable number of slots When exercising uinput interface syzkaller may try setting up device with a really large number of slots, which causes memory allocation failure in inputmtinitslot...

5.5CVSS6.9AI score0.00283EPSS
Exploits0References4
Prion
Prion
added 2023/10/25 7:15 p.m.18 views

Code injection

This issue was addressed by removing the vulnerable code. This issue is fixed in watchOS 10.1, iOS 16.7.2 and iPadOS 16.7.2, tvOS 17.1, iOS 17.1 and iPadOS 17.1. A device may be passively tracked by its Wi-Fi MAC address...

5CVSS5.8AI score0.01245EPSS
Exploits0References12Affected Software4
Malwarebytes
Malwarebytes
added 2023/03/06 2:0 a.m.16 views

8 cybersecurity tips to keep you safe when travelling

The best way to keep your devices safe when you're travelling is to be unplugged. If you don't need it, don't take it with you. But since that is not always an option, here are some tips to keep you safe while you travel. 1. Backup before you go The consequences of losing your device or having it...

7.2AI score
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 6:59 p.m.101 views

K32380005: Linux kernel vulnerability CVE-2019-18282

Security Advisory Description The flowdissector feature in the Linux kernel 4.3 through 5.x before 5.3.10 has a device tracking vulnerability, aka CID-55667441c84f. This occurs because the auto flowlabel of a UDP IPv6 packet relies on a 32-bit hashrnd value as a secret, and because jhash instead ...

5.3CVSS6.8AI score0.02605EPSS
Exploits0Affected Software16
Malwarebytes
Malwarebytes
added 2023/01/10 1:0 p.m.18 views

Polite WiFi loophole could allow attackers to drain device batteries

Researchers at the University of Waterloo in Ontario have further researched a loophole in the WiFi protocol that was dubbed "polite WiFi". Last year the researchers published a study in which they showed someone could use this loophole to triangulate the location of any WiFi enabled device. Now,...

1.4AI score
Exploits0
Positive Technologies
Positive Technologies
added 2022/09/13 12:0 a.m.7 views

PT-2022-23621 · Pal Electronics Systems · Palgate

Name of the Vulnerable Software and Affected Versions: Pal Electronics Systems affected versions not specified Description: The issue is an authorization problem in the PalGate device management Android client app, affecting gates of buildings and parking lots controlled by a simple button in any...

8.6CVSS8.1AI score0.00409EPSS
Exploits0References4
ThreatPost
ThreatPost
added 2022/06/13 12:36 p.m.49 views

Bluetooth Signals Can Be Used to Track Smartphones, Say Researchers

Researchers warn Bluetooth signals can be used to track device owners via a unique fingerprinting of the radio signal. The technique was presented via a paper presented at IEEE Security and Privacy conference last month by researchers at the University of California San Diego. The paper suggests...

7.2AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/10/28 12:0 a.m.88 views

F5 Networks BIG-IP : Linux kernel vulnerability (K32380005)

The version of F5 Networks BIG-IP installed on the remote host is prior to 17.1.3.1 / 17.5.1.4. It is, therefore, affected by a vulnerability as referenced in the K32380005 advisory. The flowdissector feature in the Linux kernel 4.3 through 5.x before 5.3.10 has a device tracking vulnerability, a...

5.3CVSS6.8AI score0.02605EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/08/24 12:0 a.m.7 views

Apple macOS 权限许可和访问控制问题漏洞

Apple macOS is a suite of specialized operating systems developed by Apple Inc. for Mac computers. Apple macOS Monterey suffers from a privilege-granting and access-control issue vulnerability that stems from the fact that devices may be tracked via BSSID...

5.5CVSS5.7AI score0.00257EPSS
Exploits0References6
Wired Threat Level
Wired Threat Level
added 2021/06/13 11:0 a.m.60 views

All the New Privacy Features Coming to iOS and macOS

Improvements designed to keep your email private, crack down on data stealing apps, and help you find lost devices are on their way...

1.7AI score
Exploits0
Cvelist
Cvelist
added 2021/06/11 4:42 p.m.34 views

CVE-2021-0466

In startIpClient of ClientModeImpl.java, there is a possible identifier which could be used to track a device. This could lead to remote information disclosure to a proximal attacker, with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

7.3AI score0.01441EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2020/12/22 12:0 a.m.322 views

CentOS 7 : kernel (RHSA-2020:5437)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:5437 advisory. - The flowdissector feature in the Linux kernel 4.3 through 5.x before 5.3.10 has a device tracking vulnerability, aka CID-55667441c84f. This occurs...

7.5CVSS6.9AI score0.03292EPSS
Exploits1References8
Rows per page
Query Builder