1303 matches found
CVE-2025-48614
CVE-2025-48614 : Android recovery path bug in rebootWipeUserData (RecoverySystem.java) allows factory reset while in DSU mode due to a missing permission check. This creates a physical denial-of-service risk with no extra privileges and no user interaction needed. Affected: Android framework comp...
Socomec DIRIS Digiware M-70 Modbus RTU over TCP factory reset denial of service vulnerability
Talos Vulnerability Report TALOS-2025-2138 Socomec DIRIS Digiware M-70 Modbus RTU over TCP factory reset denial of service vulnerability December 1, 2025 CVE Number CVE-2025-20085 SUMMARY A denial of service vulnerability exists in the Modbus RTU over TCP functionality of Socomec DIRIS Digiware...
Socomec DIRIS Digiware M-70 Modbus TCP factory reset denial of service vulnerability
Talos Vulnerability Report TALOS-2024-2118 Socomec DIRIS Digiware M-70 Modbus TCP factory reset denial of service vulnerability December 1, 2025 CVE Number CVE-2024-49572 SUMMARY A denial of service vulnerability exists in the Modbus TCP functionality of Socomec DIRIS Digiware M-70 1.6.9. A...
ASB-A-430568718
In rebootWipeUserData of RecoverySystem.java, there is a possible way to factory reset the device while in DSU mode due to a missing permission check. This could lead to physical denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2023-7329
Tinycontrol LAN Controller v3 LK3 firmware versions up to 1.58a hardware v3.8 contain a missing authentication vulnerability in the stm.cgi endpoint. A remote, unauthenticated attacker can send crafted requests to forcibly reboot the device or restore factory settings, leading to a denial of...
CVE-2023-7329 Tinycontrol LAN Controller v3 (LK3) Remote DoS
Tinycontrol LAN Controller v3 LK3 firmware versions up to 1.58a hardware v3.8 contain a missing authentication vulnerability in the stm.cgi endpoint. A remote, unauthenticated attacker can send crafted requests to forcibly reboot the device or restore factory settings, leading to a denial of...
CVE-2023-7329 Tinycontrol LAN Controller v3 (LK3) Remote DoS
Tinycontrol LAN Controller v3 LK3 firmware versions up to 1.58a hardware v3.8 contain a missing authentication vulnerability in the stm.cgi endpoint. A remote, unauthenticated attacker can send crafted requests to forcibly reboot the device or restore factory settings, leading to a denial of...
PT-2025-46734
Name of the Vulnerable Software and Affected Versions Tinycontrol LAN Controller versions up to 1.58a hardware v3.8 Description The Tinycontrol LAN Controller v3 LK3 firmware has a missing authentication check. An attacker who is not authenticated can send specially crafted requests to the stm.cg...
PT-2025-43492
In rebootWipeUserData of RecoverySystem.java, there is a possible way to factory reset the device while in DSU mode due to a missing permission check. This could lead to physical denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...
EUVD-2018-18345
Malware in sbrugna...
EUVD-2020-1769
Malware in sbrugna...
EUVD-2018-19648
Malware in sbrugna...
EUVD-2018-10592
Malware in sbrugna...
EUVD-2018-6887
Malware in sbrugna...
EUVD-2017-11864
Malware in sbrugna...
EUVD-2018-19651
Malware in sbrugna...
EUVD-2018-19640
Malware in sbrugna...
EUVD-2017-17133
Malware in sbrugna...
EUVD-2016-7627
Malware in sbrugna...
EUVD-2019-11083
Malware in sbrugna...