CVE-2019-20608

An issue was discovered on Samsung mobile devices with N7.x, O8.x, and P9.0 software. An attacker can use Emergency mode to disable features. The Samsung IDs are SVE-2018-13164, SVE-2018-13165 April 2019...

EUVD-2019-11148

Malware in sbrugna...

Unable to Connect to High Availability Enabled XenSever Pool and All Servers in Pool are in Emergency Mode

This article provides resolution to connectivity issues to the pool in XenCenter. Following are some of the issues that you might experience: Cannot connect to the pool in XenCenter Cannot start or migrate the virtual machines, although the virtual machines are active and running. All the servers...

The design defect of the ActivePool rehypothecation mechanism, ReaperVaultV2 administrators have too much authority and have the conditions and motives to do evil, so make users lack trust in the ETHOS system (crisis of trust)

Lines of code Vulnerability details Impact In the design logic of the current system, ActivePool holds all the collaterals of active troves and deposits part of them in ReaperVaultV2 for re-mortgaging. If the deposit and withdraw functions of ReaperVaultV2 revert, Core functions such as borrowing...

SUSE CVE-2009-3700

Buffer overflow in sgLog.c in squidGuard 1.3 and 1.4 allows remote attackers to cause a denial of service application hang or loss of blocking functionality via a long URL with many / slash characters, related to "emergency mode."...

Pool cannot recover from the emergency mode

Lines of code Vulnerability details Impact Pool cannot recover from the emergency mode. If the admin turn on the emergency mode, the user cannot swap or addLiqudity in the pool any more. Proof of Concept In the Pool Contract, the admin factory owner can set the status of the pool to ermergency:...

UserLock information can be found during emergency mode

Lines of code Vulnerability details When the contract is in blocked state emergency mode, the protocol wants to return an empty UserLock info, on calling the function getUserLock. However, there is another way, by which the users can find the same information. The below function is not protected...

Emergency mode enable/disable issue

Lines of code Vulnerability details Impact Enabling emergency mode should be one way process that sets contracts in emergency mode. It should be not possible to revert that process, otherwise it puts owner of the contracts in very privileged position. Owner can trigger emergency mode, perform...

Function cooldown() is not protected when protocol in emergency mode

Lines of code Vulnerability details Function cooldown is not protected when protocol is in emergency mode. Its behavior is not consistent with the other major functions defined. Impact While other major functions like stake, unstake, lock, unlock, etc., of this contract is protected by checking f...

CVE-2019-20608

An issue was discovered on Samsung mobile devices with N7.x, O8.x, and P9.0 software. An attacker can use Emergency mode to disable features. The Samsung IDs are SVE-2018-13164, SVE-2018-13165 April 2019...

CVE-2019-20608

An issue was discovered on Samsung mobile devices with N7.x, O8.x, and P9.0 software. An attacker can use Emergency mode to disable features. The Samsung IDs are SVE-2018-13164, SVE-2018-13165 April 2019...

Design/Logic Flaw

An issue was discovered on Samsung mobile devices with N7.x, O8.x, and P9.0 software. An attacker can use Emergency mode to disable features. The Samsung IDs are SVE-2018-13164, SVE-2018-13165 April 2019...

Moderate: Red Hat Bug Fix Advisory: redhat-virtualization-host bug fix and enhancement update

Updated ​​redhat-virtualization-host packages that fix several bugs and add various enhancements are now available. The imgbased packages provide a way to create read-only base images from squashfs images, and a way to manage writable filesystem layers on top of those base images, including the...

App Layering: "Welcome to Emergency Mode" usually means the Repository logical volume is damaged

After a reboot, the ELM refuses to boot, instead reporting you are now in Emergency Mode: Welcome to emergency mode! After logging in, type "journalctl -xb" to view system logs, "systemctl reboot" to reboot, "systemctl default" or ^D to try again to boot into default mode Give root password for...

Fedora 27 : systemd (2017-6263c938c7)

Use infinite timeouts for passwords during boot when JobTimeoutSec=0 - Some tty utf8-mode fixes - Only send one auxillary fd set over dbus - Various network-manager crash and spurious assert fixes - Do not remount network filesystems ro during shutdown and unmount DM devices better - Fix...

The vulnerability of the microprogramming software of Siemens Simatic S7-1200 programmable logic controllers allows a malicious actor to cause malfunctions during maintenance operations.

The software of the programmable logic controller Simatic S7-1200 contains a vulnerability that allows a malicious individual to put the device into an emergency mode by sending special HTTP packets on port 80 TCP. This action is necessary before a “cold” reboot can be performed...

The vulnerability of the microprogramming software of Siemens Simatic S7-1200 programmable logic controllers allows a malicious actor to cause malfunctions during maintenance operations.

The software of the Siemens SIMATIC S7-1200 programmable logic controller contains a vulnerability. When this vulnerability is exploited, the device can be switched into an emergency mode by sending a special TCP/IP packet to port 102. This emergency mode persists until a hardware restart is...

The vulnerability of the microprogramming software of Siemens Simatic S7-1200 programmable logic controllers allows a malicious actor to cause malfunctions during maintenance operations.

The software of the Siemens SIMATIC S7-1200 programmable logic controller contains a vulnerability. When exploited, it is possible to switch the device into an emergency mode by sending specially crafted PROFINET packets. This emergency mode persists until a hardware restart is performed...

The vulnerability of the microprogrammed software of Siemens Simatic S7-1200 programmable logic controllers allows a intruder to trigger a service failure.

The software of the programmable logic controller Simatic S7-1200 contains a vulnerability. Exploiting this vulnerability by sending specially crafted HTTPS packets to port 443 causes the device to enter an emergency mode before a “cold” reboot can be performed...

squidGuard 1.4 - Remote Denial of Service - POC

We're using squidGuard 1.4 and discovered a possible denial of service. When a user is accessing a very long URL, a internal buffer is too small and squidguard is entering emergency mode. In this mode, no blocking is done anymore. The URL for reference:...