4 matches found
EUVD-2025-202927
SpaceX Starlink Dish devices with firmware 2024.12.04.mr46620 e.g., on Mini1prod2 allow administrative actions via unauthenticated LAN gRPC requests, aka MARMALADE 2. The cross-origin policy can be bypassed by omitting a Referer header. In some cases, an attacker's ability to read tilt, rotation,...
PT-2025-36046
Name of the Vulnerable Software and Affected Versions: BiometricEnrollIntroduction.java affected versions not specified Description: An issue exists in the onStart function of BiometricEnrollIntroduction.java related to an unsafe PendingIntent. This could allow an attacker to determine the device...
CVE-2024-47128
The goTenna Pro App encryption key name is always sent unencrypted when the key is shared over RF through a broadcast message. It is advised to share the encryption key via local QR for higher security operations...
CVE-2024-47128
The CVE-2024-47128 issue affects goTenna Pro/Pro X series apps. The root cause is that the encryption key name is broadcast unencrypted over RF, potentially exposing sensitive information. Documented impact centers on confidentiality risk to broadcasted data, with remediation guidance to share ke...