Lucene search
+L

179 matches found

cve
cve
added 2025/09/16 12:0 a.m.52 views

CVE-2025-56557

CVE-2025-56557 describes a vulnerability in Tuya Smart Life App version 5.6.1 that allows an attacker to unprivilegedly control Matter devices using the Matter protocol. The NVD entry lists a CVSS v3.1 base score of 9.1 (CRITICAL) with network attack vector, no user interaction required, and impa...

9.1CVSS6.6AI score0.00291EPSS
Exploits0References1Affected Software1
vulnrichment
vulnrichment
added 2025/09/16 12:0 a.m.2 views

CVE-2025-56557

An issue discovered in the Tuya Smart Life App 5.6.1 allows attackers to unprivileged control Matter devices via the Matter protocol...

6.6AI score0.00291EPSS
Exploits0References1
cnnvd
cnnvd
added 2025/09/16 12:0 a.m.21 views

Tuya Smart Life App 安全漏洞

Tuya Smart Life App is a smart home control app from Chinese company Tuya Tuya. A security vulnerability exists in Tuya Smart Life App version 5.6.1, which originates from an attacker being able to control the device without privileges via the Matter protocol...

9.1CVSS6.7AI score0.00291EPSS
Exploits0References3
osv
osv
added 2025/08/14 6:52 p.m.6 views

MAL-2025-34141 Malicious code in sublimation-ionosphere-quasar-darkmatter (npm)

The package sublimation-ionosphere-quasar-darkmatter was found to contain malicious code...

7.2AI score
Exploits0
redhatcve
redhatcve
added 2025/05/23 6:26 a.m.9 views

CVE-2024-56318

In raw\TCP.cpp in Matter aka connectedhomeip or Project CHIP through 1.4.0.0 before 27ca6ec, there is a NULL pointer dereference in TCPBase::ProcessSingleMessage via TCP packets with zero messageSize, leading to denial of service...

7.5CVSS6.8AI score0.00573EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 6:26 a.m.8 views

CVE-2024-56317

In Matter aka connectedhomeip or Project CHIP through 1.4.0.0, the WriteAcl function deletes all existing ACL entries first, and then attempts to recreate them based on user input. If input validation fails during decoding, the process stops, and no entries are restored by...

7.5CVSS6.9AI score0.0037EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 6:26 a.m.6 views

CVE-2024-56319

In Matter aka connectedhomeip or Project CHIP through 1.4.0.0 before e3277eb, unlimited user label appends in a userlabel cluster can lead to a denial of service resource exhaustion...

7.5CVSS6.8AI score0.00522EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 5:52 a.m.5 views

CVE-2023-22491

Gatsby is a free and open source framework based on React that helps developers build websites and apps. The gatsby-transformer-remark plugin prior to versions 5.25.1 and 6.3.2 passes input through to the gray-matter npm package, which is vulnerable to JavaScript injection in its default...

8.1CVSS7.1AI score0.00613EPSS
Exploits1References1
ossf
ossf
added 2025/05/22 12:48 p.m.3 views

Malicious code in matter_build_action (npm)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
wired
wired
added 2025/03/12 4:50 p.m.37 views

The Violent Rise of ‘No Lives Matter’

“No Lives Matter” has emerged in recent months as a particularly violent splinter group within the extremist crime network known as Com and 764, and experts are at a loss for how to stop its spread...

7.3AI score
Exploits0
nvd
nvd
added 2024/12/18 11:15 p.m.23 views

CVE-2024-56319

In Matter aka connectedhomeip or Project CHIP through 1.4.0.0 before e3277eb, unlimited user label appends in a userlabel cluster can lead to a denial of service resource exhaustion...

7.5CVSS0.00522EPSS
Exploits0References3
nvd
nvd
added 2024/12/18 11:15 p.m.28 views

CVE-2024-56317

In Matter aka connectedhomeip or Project CHIP through 1.4.0.0, the WriteAcl function deletes all existing ACL entries first, and then attempts to recreate them based on user input. If input validation fails during decoding, the process stops, and no entries are restored by...

7.5CVSS0.0037EPSS
Exploits0References1
nvd
nvd
added 2024/12/18 11:15 p.m.25 views

CVE-2024-56318

In raw\TCP.cpp in Matter aka connectedhomeip or Project CHIP through 1.4.0.0 before 27ca6ec, there is a NULL pointer dereference in TCPBase::ProcessSingleMessage via TCP packets with zero messageSize, leading to denial of service...

7.5CVSS0.00573EPSS
Exploits0References3
cvelist
cvelist
added 2024/12/18 12:0 a.m.16 views

CVE-2024-56317

In Matter aka connectedhomeip or Project CHIP through 1.4.0.0, the WriteAcl function deletes all existing ACL entries first, and then attempts to recreate them based on user input. If input validation fails during decoding, the process stops, and no entries are restored by...

0.0037EPSS
Exploits0References1
cvelist
cvelist
added 2024/12/18 12:0 a.m.24 views

CVE-2024-56318

In raw\TCP.cpp in Matter aka connectedhomeip or Project CHIP through 1.4.0.0 before 27ca6ec, there is a NULL pointer dereference in TCPBase::ProcessSingleMessage via TCP packets with zero messageSize, leading to denial of service...

0.00573EPSS
Exploits0References3
cvelist
cvelist
added 2024/12/18 12:0 a.m.25 views

CVE-2024-56319

In Matter aka connectedhomeip or Project CHIP through 1.4.0.0 before e3277eb, unlimited user label appends in a userlabel cluster can lead to a denial of service resource exhaustion...

0.00522EPSS
Exploits0References3
cve
cve
added 2024/12/18 12:0 a.m.52 views

CVE-2024-56319

Matter (aka connectedhomeip/Project CHIP) CVE-2024-56319 affects versions up to 1.4.0.0 before commit e3277eb. The issue is an unlimited number of user labels appended in a userlabel cluster, leading to a denial of service via resource exhaustion. The CVSS 3.1 vector indicates network attack with...

7.5CVSS6.5AI score0.00522EPSS
Exploits0References3
cve
cve
added 2024/12/18 12:0 a.m.83 views

CVE-2024-56318

Matter (aka connectedhomeip/Project CHIP) contains a NULL pointer dereference in TCPBase::ProcessSingleMessage triggered by TCP packets with zero messageSize, affecting raw_TCP.cpp in versions up to and including 1.4.0.0 before commit 27ca6ec. This could lead to denial of service. Affected produc...

7.5CVSS6.5AI score0.00573EPSS
Exploits0References3
osv
osv
added 2024/12/18 12:0 a.m.8 views

CVE-2024-56319

In Matter aka connectedhomeip or Project CHIP through 1.4.0.0 before e3277eb, unlimited user label appends in a userlabel cluster can lead to a denial of service resource exhaustion...

7.5CVSS7AI score0.00522EPSS
Exploits0References5
cnnvd
cnnvd
added 2024/12/18 12:0 a.m.4 views

Matter 安全漏洞

Matter Project CHIP is a unified open source application layer connectivity standard open sourced by the Connectivity Standards Alliance. Designed to enable developers and device manufacturers to connect and build reliable, secure ecosystems and improve compatibility between connected home device...

7.5CVSS6.6AI score0.00522EPSS
Exploits0References3
Rows per page
Query Builder