Bosch Infotainment ECU 安全漏洞

The Bosch Infotainment ECU is an in-car entertainment system developed by the German company Bosch. There is a security vulnerability in the Bosch Infotainment ECU, which stems from improper configuration during the startup phase of a specific Systemd service. This vulnerability may lead to the...

EUVD-2024-46262

Malicious code in bioql PyPI...

EUVD-2025-2776

Malicious code in bioql PyPI...

CVE-2021-35978

An issue was discovered in Digi TransPort DR64, SR44 VC74, and WR. The ZING protocol allows arbitrary remote command execution with SUPER privileges. This allows an attacker with knowledge of the protocol to execute arbitrary code on the controller including overwriting firmware, adding/removing...

CVE-2024-52564

Inclusion of undocumented features or chicken bits issue exists in UD-LT1 firmware Ver.2.1.8 and earlier and UD-LT1/EX firmware Ver.2.1.8 and earlier. A remote attacker may disable the firewall function of the affected products. As a result, an arbitrary OS command may be executed and/or...

CVE-2025-22450

The CVE-2025-22450 issue affects I-O Data UD-LT2 devices running firmware 1.00.008_SE and earlier. Described as inclusion of undocumented features, it may allow a remote attacker to disable the LAN-side firewall and open specific ports. Vulnerability is CVE-2025-22450 and is listed among multiple...

Multiple vulnerabilities in I-O DATA router UD-LT2

Overview UD-LT2 provided by I-O DATA DEVICE, INC. contains multiple vulnerabilities listed below. OS Command Injection CWE-78 - CVE-2025-20617, CVE-2025-26856 Inclusion of Undocumented Features CWE-1242 - CVE-2025-22450 OS Command Injection CWE-78 - CVE-2025-23237 CVE-2025-20617, CVE-2025-22450,...

I-O Data Device UD-LT2 安全漏洞

I-O Data Device UD-LT2 is a wireless router from I-O Data Device Japan. A security vulnerability exists in I-O Data Device UD-LT2 1.00.008SE and prior versions, which stems from an inclusion of undocumented functionality issue that could allow a remote attacker to disable the LAN-side firewall...

Multiple vulnerabilities in I-O DATA routers UD-LT1 and UD-LT1/EX

Overview UD-LT1 and UD-LT1/EX provided by I-O DATA DEVICE, INC. contain multiple vulnerabilities listed below. Incorrect Permission Assignment for Critical Resource CWE-732 - CVE-2024-45841 OS Command Injection CWE-78 - CVE-2024-47133 Inclusion of Undocumented Features CWE-1242 - CVE-2024-52564 T...

Cybercriminals Targeting Apache NiFi Instances for Cryptocurrency Mining

A financially motivated threat actor is actively scouring the internet for unprotected Apache NiFi instances to covertly install a cryptocurrency miner and facilitate lateral movement. The findings come from the SANS Internet Storm Center ISC, which detected a spike in HTTP requests for "/nifi" o...

New GobRAT Remote Access Trojan Targeting Linux Routers in Japan

Linux routers in Japan are the target of a new Golang remote access trojan RAT called GobRAT. "Initially, the attacker targets a router whose WEBUI is open to the public, executes scripts possibly by using vulnerabilities, and finally infects the GobRAT," the JPCERT Coordination Center JPCERT/CC...

Digi TransPort DR64 命令注入漏洞

The Digi International Digi TransPort is a full-featured cellular router from Digi International USA. A security vulnerability exists in the Digi TransPort DR64 that allows arbitrary remote commands to be executed using the SUPER privilege. This allows an attacker to exploit the vulnerability kno...

Threat Roundup for June 29 to July 6th

Today, as we do every week, Talos is giving you a glimpse into the most prevalent threats we've observed this week — covering the dates between June 29 and July 6. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, it will summarize the threats we've observed by...

win32/7 x86 ultimate Add Admin ALI/ALI & Enable RDP Obfuscated Shellcode - 1218 bytes

Title: Obfuscated Shellcode Windows x86 1218 Bytes Add Administrator User/Pass ALI/ALI & Add ALI to RDP Group & Enable RDP From Registery & STOP Firewall & Auto Start terminal service length: 1218 bytes Date: 13 January 2015 Author: Ali Razmjoo tested On: Windows 7 x86 ultimate WinExec = 0x7666e6...

Disable Firewall

Added: 11/25/2008 Background This tool attempts to disable the firewall on the target. Limitations A connection to the target is required to run this tool. The connection requires root privileges on Unix and Linux targets. Platforms Windows / Linux / Unix...

Disable Firewall

Added: 11/25/2008 Background This tool attempts to disable the firewall on the target. Limitations A connection to the target is required to run this tool. The connection requires root privileges on Unix and Linux targets. Platforms Windows / Linux / Unix...