CVE-2020-21992

Inim Electronics SmartLiving SmartLAN/G/SI =6.x suffers from an authenticated remote command injection vulnerability. The issue exist due to the 'par' POST parameter not being sanitized when called with the 'testemail' module through web.cgi binary. The vulnerable CGI binary ELF 32-bit LSB...

INIM ELECTRONICS SmartLiving System 代码问题漏洞

INIM ELECTRONICS SmartLiving System is an application of the Italian company INIM ELECTRONICS. A SmartLiving System. A security vulnerability exists in INIM ELECTRONICS SmartLiving System, which stems from a lack of validation of parameters, and can be exploited by an attacker to specify an...

INIM ELECTRONICS SmartLiving System 信任管理问题漏洞

INIM ELECTRONICS SmartLiving System is an application of the Italian company INIM ELECTRONICS. A SmartLiving System. A security vulnerability exists in INIM ELECTRONICS SmartLiving System that stems from the use of default hard-coded credentials...

Delta Electronics CNCSoft-B Out-of-Bounds Read Vulnerability

Delta Electronics CNCSoft-B is a CNC machine simulation system software from Delta Electronics, China. The software provides high-performance motion control, rich human-machine interface functions, user-friendly operation, high stability to meet the needs of high-speed cutting, and good flexibili...

Delta Electronics CNCSoft-B Out-of-Bounds Write Vulnerability

Delta Electronics CNCSoft-B is a CNC machine simulation system software from Delta Electronics, China. The software provides high-performance motion control, rich human-machine interface functions, user-friendly operation, high stability to meet the needs of high-speed cutting, and good flexibili...

Delta Electronics CNCSoft ScreenEditor Buffer Overflow Vulnerability (CNVD-2021-31950)

Delta Electronics CNCSoft ScreenEditor is a set of CNC machine simulation system software from Delta Electronics Taiwan, China. A buffer overflow vulnerability exists in Delta Electronics CNCSoft ScreenEditorThe vulnerability can be exploited by an attacker to execute arbitrary code...

Delta Electronics CNCSoft-B 缓冲区错误漏洞

Delta Electronics CNCSoft-B is a CNC machine simulation system software from Delta Electronics, China. The software provides high-performance motion control, rich human-machine interface functions, user-friendly operation, high stability to meet the needs of high-speed cutting, and good flexibili...

Delta Electronics Delta Industrial Automation CNCSoft 缓冲区错误漏洞

Delta Electronics CNCSoft ScreenEditor is a set of CNC machine simulation system software from Delta Electronics Taiwan, China. A buffer overflow vulnerability exists in Delta Electronics CNCSoft ScreenEditorThe vulnerability can be exploited by an attacker to execute arbitrary code...

Delta Electronics CNCSoft-B 缓冲区错误漏洞

Delta Electronics CNCSoft-B is a CNC machine simulation system software from Delta Electronics, China. The software provides high-performance motion control, rich human-machine interface functions, user-friendly operation, high stability to meet the needs of high-speed cutting, and good flexibili...

Delta Electronics CNCSoft-B

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Delta Electronics Equipment: CNCSoft-B Vulnerabilities: Out-of-bounds Read, Out-of-bounds Write 2. RISK EVALUATION Successful exploitation of these vulnerabilities could lead to arbitrary code execution. 3. TECHNICAL...

CVE-2021-1892

Memory corruption due to improper input validation while processing IO control which is nonstandard in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Wired Infrastructure and Networking...

CVE-2020-11234

When sending a socket event message to a user application, invalid information will be passed if socket is freed by other thread resulting in a Use After Free condition in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consum...

Design/Logic Flaw

When sending a socket event message to a user application, invalid information will be passed if socket is freed by other thread resulting in a Use After Free condition in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consum...

CVE-2021-1892

CVE-2021-1892 describes memory corruption due to improper input validation when processing IO control that is nonstandard in Qualcomm Snapdragon components (Compute, Connectivity, Consumer Electronics Connectivity, Wired Infrastructure and Networking). Connected sources confirm the issue across Q...

CVE-2021-1892

Memory corruption due to improper input validation while processing IO control which is nonstandard in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Wired Infrastructure and Networking...

CVE-2020-11234

CVE-2020-11234 describes a Use-After-Free condition in Qualcomm Snapdragon family firmware: when sending a socket event message to a user application, invalid information can be passed if the socket is freed by another thread, leading to a local impact on Snapdragon Auto, Snapdragon Compute, Snap...

CVE-2020-11191

CVE-2020-11191 concerns an out-of-bounds read during processing of crafted SDP in Qualcomm Snapdragon firmware. The entry specifies a lack of null-string checks affecting multiple Snapdragon subsystems (Auto, Compute, Connectivity, Consumer Electronics Connectivity, Consumer IoT, Industrial IoT, ...

SQL Injection Vulnerability in IP Broadcasting System of Guangzhou Paulan Electronics Co.

Ltd. is a technologically advanced public broadcasting, conference systems, central control matrix system, professional sound reinforcement, high-definition recording and broadcasting system, high-definition remote video conferencing, led display, stage lighting, landscape lighting and other soun...

SQL Injection Vulnerability in IP Webcast Backend Management System of Guangzhou Paulun Electronics Co.

Ltd. is a brand that specializes in the research, development and production of sound, light and video system integration equipment. There is a SQL injection vulnerability in the background management system of IP network broadcasting of Guangzhou Paulun Electronic Co., Ltd, which can be exploite...

Friday Squid Blogging: On SQUIDS

A good tutorial: But we can go beyond the polarization of electrons and really leverage the electron waviness. By interleaving thin layers of superconducting and normal materials, we can make the quantum electronic equivalents of transistors and diodes such as Superconducting Tunnel Junctions SJT...