PT-2025-51278

Name of the Vulnerable Software and Affected Versions Bluetooth affected versions not specified Description An integer overflow condition exists in the Bluetooth Host stack, specifically within the bt br acl recv routine. This routine is a critical path for processing inbound BR/EDR L2CAP traffic...

EUVD-2016-10719

Malware in sbrugna...

EUVD-2021-26660

Malware in sbrugna...

CVE-2022-29223

Azure RTOS USBX is a USB host, device, and on-the-go OTG embedded stack. In versions prior to 6.1.10, an attacker can cause a buffer overflow by providing the Azure RTOS USBX host stack a HUB descriptor with bNbPorts set to a value greater than UXMAXTT which defaults to 8. For a bNbPorts value of...

Type confusion

Azure RTOS USBX is a USB host, device, and on-the-go OTG embedded stack, that is fully integrated with Azure RTOS ThreadX. An attacker can cause remote code execution due to expired pointer dereference and type confusion vulnerabilities in Azure RTOS USBX. The affected components include...

CVE-2023-48698 Azure RTOS USBX Remote Code Execution Vulnerability

Azure RTOS USBX is a USB host, device, and on-the-go OTG embedded stack, that is fully integrated with Azure RTOS ThreadX. An attacker can cause remote code execution due to expired pointer dereference vulnerabilities in Azure RTOS USBX. The affected components include functions/processes in host...

CVE-2023-48698 Azure RTOS USBX Remote Code Execution Vulnerability

Azure RTOS USBX is a USB host, device, and on-the-go OTG embedded stack, that is fully integrated with Azure RTOS ThreadX. An attacker can cause remote code execution due to expired pointer dereference vulnerabilities in Azure RTOS USBX. The affected components include functions/processes in host...

CVE-2023-48694

CVE-2023-48694 : Azure RTOS USBX contains an expired pointer dereference and type confusion vulnerability that can lead to remote code execution. Affected: USBX in RTOS v6.2.1 and earlier (host stack, host class, device-linked classes such as ASIX, Prolific, SWAR, audio, CDC ECM). Root cause: poi...

PT-2023-30903 · Microsoft · Azure Rtos Usbx

Name of the Vulnerable Software and Affected Versions: Azure RTOS USBX versions prior to 6.3.0 Description: Azure RTOS USBX is a USB host, device, and on-the-go OTG embedded stack, fully integrated with Azure RTOS ThreadX. An attacker can cause remote code execution due to expired pointer...

PT-2023-7500 · Microsoft · Azure Rtos Usbx

Name of the Vulnerable Software and Affected Versions: Azure RTOS USBX versions prior to 6.3.0 Description: The issue is related to expired pointer dereference vulnerabilities in Azure RTOS USBX, which can lead to remote code execution. The affected components include functions and processes in t...

CVE-2021-3329

Lack of proper validation in HCI Host stack initialization can cause a crash of the bluetooth stack...

Zephyr 安全漏洞

Zephyr is an extensible real-time operating system RTOS open-sourced by the Zephyr Project. A security vulnerability exists in Zephyr version v2.4.0, which stems from invalid ACLMTU packets not being handled correctly during hci host stack initialization, and which can be exploited by an attacker...

CVE-2021-3329 DOS: Incorrect handling of the initial HCI ACL_MTU handshake packet leads to crash of bluetooth host layer

Lack of proper validation in HCI Host stack initialization can cause a crash of the bluetooth stack...

SUSE CVE-2016-4020

The patchinstruction function in hw/i386/kvmvapic.c in QEMU does not initialize the imm32 variable, which allows local guest OS administrators to obtain sensitive information from host stack memory by accessing the Task Priority Register TPR...

SUSE CVE-2019-3812

QEMU, through version 2.10 and through version 3.1.0, is vulnerable to an out-of-bounds read of up to 128 bytes in the hw/i2c/i2c-ddc.c:i2cddc function. A local attacker with permission to execute i2c commands could exploit this to read stack memory of the qemu process on the host...

CVE-2022-29223

Azure RTOS USBX is a USB host, device, and on-the-go OTG embedded stack. In versions prior to 6.1.10, an attacker can cause a buffer overflow by providing the Azure RTOS USBX host stack a HUB descriptor with bNbPorts set to a value greater than UXMAXTT which defaults to 8. For a bNbPorts value of...

CVE-2022-29223

Azure RTOS USBX contains a buffer overflow vulnerability in the USB host stack when processing a HUB descriptor with bNbPorts greater than UX_MAX_TT (default 8) in versions prior to 6.1.10. In particular, a HUB descriptor with bNbPorts = 255 can cause ux_host_class_hub_descriptor_get to write bey...

CVE-2022-29223 Buffer overflow on HUB descriptor in Azure RTOS USBX

Azure RTOS USBX is a USB host, device, and on-the-go OTG embedded stack. In versions prior to 6.1.10, an attacker can cause a buffer overflow by providing the Azure RTOS USBX host stack a HUB descriptor with bNbPorts set to a value greater than UXMAXTT which defaults to 8. For a bNbPorts value of...

Microsoft Azure RTOS USBX 安全漏洞

Microsoft Azure RTOS USBX is a high-performance USB host, device, and mobile OTG embedded stack open-sourced by Microsoft in the United States and fully integrated with Azure RTOS ThreadX. A security vulnerability exists in Microsoft Azure RTOS USBX versions prior to 6.1.10. An attacker exploits...

Kernel: ppc: kvm: conflicting use of HSTATE_HOST_R1 to store r1 state leads to host stack corruption

A flaw was found in the way the KVM hypervisor on the Power8 processor stores the r1 register state in the 'HSTATEHOSTR1' field on the Linux kernel stack. This flaw occurs while handling hypercalls in Transactional Memory TM suspend mode in the kvmppcsavetm and kvmppcrestoretm routines, leading t...