Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Prion
Prionadded 2023/12/05 1:15 a.m.13 views

Null pointer dereference

Azure RTOS USBX is a USB host, device, and on-the-go OTG embedded stack, that is fully integrated with Azure RTOS ThreadX. An attacker can cause remote code execution due to expired pointer dereference vulnerabilities in Azure RTOS USBX. The affected components include functions/processes in host...

7.5CVSS8.2AI score0.01633EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2023/12/05 12:24 a.m.12 views

CVE-2023-48695 Azure RTOS USBX Remote Code Execution Vulnerability

Azure RTOS USBX is a USB host, device, and on-the-go OTG embedded stack, that is fully integrated with Azure RTOS ThreadX. An attacker can cause remote code execution due to out of bounds write vulnerabilities in Azure RTOS USBX. The affected components include functions/processes in host and...

7.3CVSS10AI score0.01847EPSS
Exploits0References1
Prion
Prionadded 2022/10/13 7:15 p.m.11 views

Buffer overflow

Azure RTOS USBX is a high-performance USB host, device, and on-the-go OTG embedded stack, that is fully integrated with Azure RTOS ThreadX. The case is, in uxhostclasspimaread, there is data length from device response, returned in the very first packet, and read by L165 code, as headerlength. Th...

7.5CVSS9.4AI score0.00438EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2022/05/24 3:0 p.m.78 views

CVE-2022-29246

Azure RTOS USBX DFU UPLOAD vulnerability (CVE-2022-29246) allows a potential buffer overflow prior to version 6.1.11. If a DFU UPLOAD request carries a wLength greater than UX_SLAVE_REQUEST_CONTROL_MAX_LENGTH (256 bytes), the code path in ux_device_class_dfu_read may copy data into a 256-byte buf...

9.8CVSS10AI score0.02444EPSS
Exploits0References3Affected Software1
CNNVD
CNNVDadded 2021/08/04 12:0 a.m.1 views

HCC Embedded InterNiche 缓冲区错误漏洞

InterNiche Technologies NicheStack is a small footprint, RFC-compliant embedded stack that is portable to commercial or proprietary non-MMU operating systems. InterNiche Technologies NicheStack suffers from an input validation error vulnerability that stems from a boundary condition in the ICMP...

7.5CVSS5.7AI score0.00534EPSS
Exploits0References8
CNNVD
CNNVDadded 2021/02/11 12:0 a.m.3 views

Multiple Embedded TCP/IP Security Feature Issue Vulnerability

Multiple Embedded TCP/IP is a highly efficient embedded stack developed using a verifiable process and in strict compliance with the MISRA coding standard. Multiple Embedded TCP/IP suffers from a security signature issue vulnerability that can be exploited by an attacker to spoof or interrupt TCP...

9.8CVSS7.3AI score0.00184EPSS
Exploits0References5
CNNVD
CNNVDadded 2021/02/11 12:0 a.m.2 views

Oryx Embedded CycloneTCP ISN Security Feature Issue Vulnerability

Oryx Embedded CycloneTCP ISN is an application from Oryx Embedded, France. It provides a dual IPv4,IPv6 stack for embedded applications. CycloneTCP ISN suffers from a security signature issue vulnerability that could allow an attacker to spoof or corrupt a TCP connection...

9.8CVSS7.3AI score0.00184EPSS
Exploits0References5
Rows per page
Query Builder