28 matches found
EUVD-2026-34802
Improper access control in MediaTek Audio HAL prior to SMR Jun-2026 Release 1 allows local attackers to trigger privileged functions...
CVE-2021-47770
OpenPLC v3 contains an authenticated remote code execution vulnerability that allows attackers with valid credentials to inject malicious code through the hardware configuration interface. Attackers can upload a custom hardware layer with embedded reverse shell code that establishes a network...
CVE-2021-47770
OpenPLC v3 contains an authenticated remote code execution vulnerability that allows attackers with valid credentials to inject malicious code through the hardware configuration interface. Attackers can upload a custom hardware layer with embedded reverse shell code that establishes a network...
EUVD-2026-3655
OpenPLC v3 contains an authenticated remote code execution vulnerability that allows attackers with valid credentials to inject malicious code through the hardware configuration interface. Attackers can upload a custom hardware layer with embedded reverse shell code that establishes a network...
CVE-2021-47770
OpenPLC v3 is affected by an authenticated remote code execution vulnerability. An attacker with valid credentials can inject malicious code via the hardware configuration interface by uploading a custom hardware layer containing embedded reverse shell code, which then initiates a network connect...
CVE-2021-47770
OpenPLC v3 contains an authenticated remote code execution vulnerability that allows attackers with valid credentials to inject malicious code through the hardware configuration interface. Attackers can upload a custom hardware layer with embedded reverse shell code that establishes a network...
PT-2026-3795
Name of the Vulnerable Software and Affected Versions OpenPLC version 3 Description The software contains an authenticated remote code execution issue. An attacker with valid credentials can inject malicious code through the hardware configuration interface. This allows for the upload of a custom...
CVE-2021-31630
Command Injection in Open PLC Webserver v3 allows remote attackers to execute arbitrary code via the "Hardware Layer Code Box" component on the "/hardware" page of the application...
Exploit for Code Injection in Openplcproject Openplc_V3_Firmware
CVE-2021-31630 OpenPLC 3 WebServer Authenticated Remote Code E...
Qualcomm Chipsets Security Vulnerability
Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that originates from the disclosure of information in the WLAN HAL when commands are processed through the WMI interface...
Qualcomm Chipsets Buffer Error Vulnerability
Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that stems from a memory corruption in the WLAN HAL...
Qualcomm Chipsets Input Validation Error Vulnerability
Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that stems from a memory corruption in the WLAN HAL...
PT-2023-21796 · Qualcomm · 315 5G Iot Modem Firmware +203
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue involves memory corruption in the WLAN HAL when parsing the Rx buffer during the processing of TLV payload. This can potentially lead to...
PT-2023-21795 · Wlan Hal · Wlan Hal
Name of the Vulnerable Software and Affected Versions: WLAN HAL affected versions not specified Description: The issue is related to memory corruption in the WLAN HAL when processing Tx/Rx commands from QDART. This can potentially lead to unspecified consequences. There is no information provided...
CVE-2023-30681
An improper input validation vulnerability within initialize function in HAL VaultKeeper prior to SMR Aug-2023 Release 1 allows attacker to cause out-of-bounds write...
CVE-2023-30650
Out of bounds read and write in callrunTspCmd of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code...
SAMSUNG Mobile devices 缓冲区错误漏洞
SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc., from the South Korean company Samsung SAMSUNG. A security vulnerability exists in SAMSUNG Mobile device SMR Jul-2023 Release 1, which originates from a read/write overrun in the enableTspDevice of...
Qualcomm Chipsets 缓冲区错误漏洞
Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that originates from a WLAN HAL memory corruption when processing WMI-UTF commands or FTM TLV1 commands...
Arbitrary Code Execution
php8 is vulnerable to code executions. The vulnerability exists in imageloadfont function due to insufficient input validation which allows a remote attacker to execute arbitrary code via the Hardware Layer Code Box component on the /hardware page of the application...
CVE-2022-20256
In the Audio HAL, there is a possible out of bounds write due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-222572821...