CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

37 matches found

RedhatCVE•added 2026/03/26 2:59 p.m.•2 views

CVE-2026-28520

arduino-TuyaOpen before version 1.2.1 contains a single-byte buffer overflow vulnerability in the WiFiMulti component. When the victim's smart hardware connects to an attacker-controlled AP hotspot, the attacker can exploit the overflow to execute arbitrary code on the affected embedded device...

8.6CVSS6.4AI score0.00007EPSS

Exploits0References1

ATTACKERKB•added 2026/03/15 1:35 p.m.•1 views

CVE-2026-28520

6.4AI score0.00007EPSS

Exploits0References4

Tenable Nessus•added 2026/03/03 12:0 a.m.•2 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-005575)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005575 advisory. In the Linux kernel, the following vulnerability has been resolved: iio: light: veml6030: fix IIO device retrieval from embedded device The dev pointer that is...

5.5CVSS6.7AI score0.00022EPSS

Exploits0References3

CNNVD•added 2025/12/27 12:0 a.m.•4 views

Xspeeder SXZOS 安全漏洞

Xspeeder SXZOS is an embedded network device firmware from China-based Xspeeder. A security vulnerability exists in Xspeeder SXZOS versions 2025-12-26 and earlier, which stems from the presence of base64-encoded Python code in the chkid parameter in vLogin.py, which could lead to remote code...

10CVSS7.6AI score0.00248EPSS

Exploits2References3

RedhatCVE•added 2025/05/23 9:58 a.m.•4 views

CVE-2024-1223

This vulnerability potentially allows unauthorized enumeration of information from the embedded device APIs. An attacker must already have existing knowledge of some combination of valid usernames, device names and an internal system key. For such an attack to be successful the system must be in ...

4.8CVSS6.4AI score0.00115EPSS

Exploits0References1

Microsoft CVE•added 2024/12/12 8:0 a.m.•2 views

iio: light: veml6030: fix IIO device retrieval from embedded device

...

5.5CVSS7.1AI score0.00022EPSS

Exploits0

SUSE CVE•added 2024/11/09 3:48 a.m.•1 views

SUSE CVE-2024-50198

In the Linux kernel, the following vulnerability has been resolved: iio: light: veml6030: fix IIO device retrieval from embedded device The dev pointer that is received as an argument in the inilluminanceperiodavailableshow function references the device embedded in the IIO device, not in the i2c...

5.5CVSS6.4AI score0.00022EPSS

Exploits0References18

OSV•added 2024/11/08 5:54 a.m.•7 views

CVE-2024-50198 iio: light: veml6030: fix IIO device retrieval from embedded device

5.5CVSS6AI score0.00022EPSS

Exploits0References11

Debian CVE•added 2024/11/08 5:54 a.m.•13 views

CVE-2024-50198

5.5CVSS5.7AI score0.00022EPSS

Exploits0

Cvelist•added 2024/11/08 5:54 a.m.•17 views

CVE-2024-50198 iio: light: veml6030: fix IIO device retrieval from embedded device

0.00022EPSS

Exploits0References6

Vulnrichment•added 2024/11/08 5:54 a.m.•1 views

CVE-2024-50198 iio: light: veml6030: fix IIO device retrieval from embedded device

7.5AI score0.00022EPSS

Exploits0References6

OSV•added 2024/03/14 3:15 a.m.•2 views

CVE-2024-1223

4.8CVSS5.6AI score

Exploits0References1

NVD•added 2024/03/14 3:15 a.m.•8 views

CVE-2024-1223

4.8CVSS5.8AI score0.00115EPSS

Exploits0References1

Cvelist•added 2024/03/14 3:4 a.m.•11 views

CVE-2024-1223 Improper authorization controls in PaperCut NG/MF

4.8CVSS5.2AI score0.00115EPSS

Exploits0References1

Vulnrichment•added 2024/03/14 3:4 a.m.•30 views

CVE-2024-1223 Improper authorization controls in PaperCut NG/MF

4.8CVSS4.8AI score0.00115EPSS

Exploits0References1

Rapid7 Blog•added 2022/10/25 5:40 p.m.•25 views

Hands-On IoT Hacking: Rapid7 at DEF CON 30 IoT Village, Pt. 2

Welcome back to our blog series on Rapid7's IoT Village exercise from DEF CON 30. Last week, we covered the basics of the exercise and achieving access to flash memory. In this post, we'll cover how to extract partition data. Extracting partition data The next step in our hands-on IoT hacking...

7.3AI score

Exploits0

Rapid7 Blog•added 2022/10/18 4:0 p.m.•17 views

Hands-On IoT Hacking: Rapid7 at DEF CON 30 IoT Village, Part 1

Rapid7 was back this year at DEF CON 30 participating at the IoT Village with another hands-on hardware hacking exercise, with the goal of teaching attendees' various concepts and methods for IoT hacking. Over the years, these exercises have covered several different embedded device topics,...

0.3AI score

Exploits0

Pen Test Partners Blog•added 2022/09/28 5:28 a.m.•19 views

Attacking Encrypted HTTP Communications

TL;DR The Reolink RLC-520A PoE camera obfuscates its HTTP communication by encrypting the POST body data. This level of security does defend against opportunistic attackers but falls short when defending against persistent attackers. Introduction Different embedded devices have their own take on...

7.6AI score

Exploits0

CNNVD•added 2022/01/27 12:0 a.m.•1 views

Cesanta MJS 安全漏洞

Cesanta MJS is an embedded JavaScript engine for C/C from Cesanta Ireland. It is designed for microcontrollers with limited resources. The main design goals are small footprint and simple C/C interoperability.Cesanta MJS has a security vulnerability that could be exploited by an attacker to cause...

5.5CVSS5.6AI score0.00138EPSS

Exploits1References2

CNVD•added 2021/11/11 12:0 a.m.•30 views

Multiple Siemens products with integer underflow vulnerability

Capital VSTAR is a complete solution. the Nucleus NET module integrates a range of standards-compliant networking and communications protocols, drivers and utilities to provide full-featured networking support in any embedded device. the Nucleus RTOS is a microkernel-based real-time operating...

9.1CVSS3.7AI score0.01577EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by