462 matches found
CVE-2021-38365
Winner aka ToneWinner desktop speakers through 2021-08-09 allow remote attackers to recover speech signals from the power-indicator LED via a telescope and an electro-optical sensor, aka a "Glowworm" attack...
SUSE-SU-2025:20341-1 Security update for kernel-livepatch-MICRO-6-0-RT_Update_4
This update for kernel-livepatch-MICRO-6-0-RTUpdate4 fixes the following issues: - CVE-2024-53237: Bluetooth: fix use-after-free in deviceforeachchild bsc1235008 - CVE-2024-56650: netfilter: xtables: fix LED ID check in ledtgcheck bsc1235431 - CVE-2024-56600: net: inet6: do not leave a dangling s...
CVE-2019-8793
A consistency issue existed in deciding when to show the screen recording indicator. The issue was resolved with improved state management. This issue is fixed in iOS 13.2 and iPadOS 13.2. A local user may be able to record the screen without a visible screen recording indicator...
The vulnerability of the conn-indicator component in TP-Link Archer AX50 Wi-Fi routers allows a hacker to execute arbitrary code.
The vulnerability of the conn-indicator component in TP-Link Archer AX50 Wi-Fi routers is related to buffer overflow in the stack. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by sending specially crafted network packets...
Exploit for CVE-2025-40634
CVE-2025-40634 The TP-Link Archer AX50 router is vulnerable t...
TP-LINK Archer AX50 安全漏洞
TP-LINK Archer AX50 is a wireless router from China P&L TP-LINK. A security vulnerability exists in versions prior to TP-LINK Archer AX50 1.0.15 build 241203 rel61480, which stems from a stack buffer overflow in the conn-indicator that could lead to the execution of arbitrary code...
PT-2025-22127 · Tp Link · Tp-Link Archer C50
Name of the Vulnerable Software and Affected Versions: TP-Link Archer AX50 versions prior to 1.0.15 build 241203 rel61480 Description: The issue is a stack-based buffer overflow vulnerability in the 'conn-indicator' binary running as root on the TP-Link Archer AX50 router. This vulnerability allo...
Malicious code in ts-db-indicator (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9556592a185a149af4a877ac348199cd0c69faf0fed158075c976b00585f8a3f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3921 Malicious code in ts-db-indicator (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9556592a185a149af4a877ac348199cd0c69faf0fed158075c976b00585f8a3f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in node-method-indicator (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 60414121dfe5a164bd132ab93d581199d55ba6bff4e937c7b52ecf6ca5fa1e0f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3798 Malicious code in node-method-indicator (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 60414121dfe5a164bd132ab93d581199d55ba6bff4e937c7b52ecf6ca5fa1e0f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Threat Exposure Indicators Detected (Low)
Intrusion detection events may indicate that the network has been compromised and is exposed to malicious entities. It is important to be aware of any such traffic that may indicate reconnaissance activity, attacks on the network, or propagation of a threat to/from other subnets of the network...
GHSA-WH6W-3828-G9QF
creationtimestamp| type| source ---|---|--- 2025-05-02 13:15:44+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/14474...
Intelligent Build to Lossless monitoring
Monitoring Intelligent Build to Lossless can be done via the Graphics status indicator: If more in-depth monitoring is needed, an in-session Intelligent Build to Lossless visual indicator can be enabled for the session. This indicator is turned off by default. When enabled, it will display a visu...
CVE-2025-21601
An Improper Following of Specification by Caller vulnerability in web management J-Web, Captive Portal, 802.1X, Juniper Secure Connect JSC of Juniper Networks Junos OS on SRX Series, EX Series, MX240, MX480, MX960, QFX5120 Series, allows an unauthenticated, network-based attacker, sending genuine...
CVE-2025-21601
CVE-2025-21601 affects Juniper Networks Junos OS on SRX/EX/MX/QFX series. The issue is an Improper Following of Specification by Caller in web management components (J-Web, Captive Portal, 802.1X, JSC) that allows an unauthenticated, network-based attacker to force high CPU usage by sending genui...
CVE-2025-23440
creationtimestamp| type| source ---|---|--- 2025-03-03 20:30:43+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/6279 2025-08-18 13:31:24+00:00| seen| MISP/4937e86f-f5bd-4d09-8bda-88a7440077f3 2025-08-19 02:47:47+00:00| seen| MISP/4937e86f-f5bd-4d09-8bda-88a7440077f3...
CVE-2024-13832
creationtimestamp| type| source ---|---|--- 2025-02-28 09:27:40+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/5865 2025-02-28 11:10:38+00:00| seen| https://t.me/cvedetector/19145 2025-03-02 11:44:22+00:00| seen| Telegram/3R56g4XUreeMi4KCYmHQmsraosf2SQJYz5M1e3c2oXJOsvo...
PT-2025-1419 · Magma · Magma
Name of the Vulnerable Software and Affected Versions: Magma versions 1.8.0 and earlier Description: The issue allows network-adjacent attackers to crash the Mobile Management Entity MME via an S1AP "E-RAB Modification Indication" packet missing an expected eNB UE S1AP ID field. This is a null...
CVE-2024-50954
The XINJE XL5E-16T and XD5E-24R-E programmable logic controllers V3.5.3b-V3.7.2a have a vulnerability in handling Modbus messages. When a TCP connection is established with the above series of controllers within a local area network LAN, sending a specific Modbus message to the controller can cau...