PT-2022-14780 · Google · Android Kernel

Name of the Vulnerable Software and Affected Versions: Android kernel Description: The issue is related to a possible out of bounds read in the sec sysmmu info function of drm fw.c due to improper input validation. This could lead to local information disclosure with no additional execution...

4 Android Bugs Being Exploited in the Wild

Google updated its May 3 Android security bulletin on Wednesday to say that there are “indications” that four of the 50 vulnerabilities “may be under limited, targeted exploitation.” That was mostly confirmed by Maddie Stone, a member of Google’s Project Zero exploit research group, who clarified...

The vulnerability in the driver/firmware/EFI code of the Linux operating system allows a hacker to bypass security restrictions.

The vulnerability in the driver/firmware/EFI code of the Linux operating system relates to bypassing security functions. Exploiting this vulnerability can allow an attacker to circumvent security restrictions...

SUSE-SU-2019:1802-1 Security update for kernel-firmware

This update for kernel-firmware aligns the firmware code with SUSE Linux Enterprise Server 15. The version is now at 20190618. Please refer to the kernel-firmware rpm changelog file to see the full history of changes...

Computrols CBAS Web Information Disclosure Vulnerability

Computrols CBAS is a building automation system from Computrols USA. An information disclosure vulnerability exists in Computrols CBAS Web, which can be exploited by an attacker to download the entire firmware code base and obtain sensitive information...

Design/Logic Flaw

The renderer process in the entertainment system on Tesla Model 3 vehicles mishandles JIT compilation, which allows attackers to trigger firmware code execution, and display a crafted message to vehicle occupants...

CVE-2019-9977

The renderer process in the entertainment system on Tesla Model 3 vehicles mishandles JIT compilation, which allows attackers to trigger firmware code execution, and display a crafted message to vehicle occupants...

CVE-2019-9977

The renderer process in the entertainment system on Tesla Model 3 vehicles mishandles JIT compilation, which allows attackers to trigger firmware code execution, and display a crafted message to vehicle occupants...

CVE-2019-9977

CVE-2019-9977 affects the Tesla Model 3 entertainment system: the renderer process mishandles JIT compilation, enabling an attacker to trigger firmware code execution and display a crafted message to occupants. Documents across NVD, Red Hat, and CVE listings confirm this issue; CVSS3 base score i...

Tor-маршрутизатор Anonabox

Tor-маршрутизатор Anonabox задолго до завершения кампании на Кикстартере собрал необходимое число заказов. Более того, устройство стоимостью $45 намного перевыполнило «план». Вместо необходимых $7500 на эту минуту собрано уже $215 000 прим.м99.: сегодня собрано уже $604,386. И это только за первы...

D-Link Planning to Patch Router Backdoor Bug

D-Link is in the process of developing a patch for a serious security vulnerability in some of its older routers that essentially functions as a backdoor. The bug, discovered by a security researcher and publicized over the weekend, enables a remote user to log into an affected router as an...