179 matches found
CVE-2025-56557
CVE-2025-56557 describes a vulnerability in Tuya Smart Life App version 5.6.1 that allows an attacker to unprivilegedly control Matter devices using the Matter protocol. The NVD entry lists a CVSS v3.1 base score of 9.1 (CRITICAL) with network attack vector, no user interaction required, and impa...
CVE-2025-56557
An issue discovered in the Tuya Smart Life App 5.6.1 allows attackers to unprivileged control Matter devices via the Matter protocol...
Tuya Smart Life App 安全漏洞
Tuya Smart Life App is a smart home control app from Chinese company Tuya Tuya. A security vulnerability exists in Tuya Smart Life App version 5.6.1, which originates from an attacker being able to control the device without privileges via the Matter protocol...
MAL-2025-34141 Malicious code in sublimation-ionosphere-quasar-darkmatter (npm)
The package sublimation-ionosphere-quasar-darkmatter was found to contain malicious code...
CVE-2024-56318
In raw\TCP.cpp in Matter aka connectedhomeip or Project CHIP through 1.4.0.0 before 27ca6ec, there is a NULL pointer dereference in TCPBase::ProcessSingleMessage via TCP packets with zero messageSize, leading to denial of service...
CVE-2024-56317
In Matter aka connectedhomeip or Project CHIP through 1.4.0.0, the WriteAcl function deletes all existing ACL entries first, and then attempts to recreate them based on user input. If input validation fails during decoding, the process stops, and no entries are restored by...
CVE-2024-56319
In Matter aka connectedhomeip or Project CHIP through 1.4.0.0 before e3277eb, unlimited user label appends in a userlabel cluster can lead to a denial of service resource exhaustion...
CVE-2023-22491
Gatsby is a free and open source framework based on React that helps developers build websites and apps. The gatsby-transformer-remark plugin prior to versions 5.25.1 and 6.3.2 passes input through to the gray-matter npm package, which is vulnerable to JavaScript injection in its default...
Malicious code in matter_build_action (npm)
--- -= Per source details. Do not edit below this line.=-...
The Violent Rise of ‘No Lives Matter’
“No Lives Matter” has emerged in recent months as a particularly violent splinter group within the extremist crime network known as Com and 764, and experts are at a loss for how to stop its spread...
CVE-2024-56319
In Matter aka connectedhomeip or Project CHIP through 1.4.0.0 before e3277eb, unlimited user label appends in a userlabel cluster can lead to a denial of service resource exhaustion...
CVE-2024-56317
In Matter aka connectedhomeip or Project CHIP through 1.4.0.0, the WriteAcl function deletes all existing ACL entries first, and then attempts to recreate them based on user input. If input validation fails during decoding, the process stops, and no entries are restored by...
CVE-2024-56318
In raw\TCP.cpp in Matter aka connectedhomeip or Project CHIP through 1.4.0.0 before 27ca6ec, there is a NULL pointer dereference in TCPBase::ProcessSingleMessage via TCP packets with zero messageSize, leading to denial of service...
CVE-2024-56317
In Matter aka connectedhomeip or Project CHIP through 1.4.0.0, the WriteAcl function deletes all existing ACL entries first, and then attempts to recreate them based on user input. If input validation fails during decoding, the process stops, and no entries are restored by...
CVE-2024-56318
In raw\TCP.cpp in Matter aka connectedhomeip or Project CHIP through 1.4.0.0 before 27ca6ec, there is a NULL pointer dereference in TCPBase::ProcessSingleMessage via TCP packets with zero messageSize, leading to denial of service...
CVE-2024-56319
In Matter aka connectedhomeip or Project CHIP through 1.4.0.0 before e3277eb, unlimited user label appends in a userlabel cluster can lead to a denial of service resource exhaustion...
CVE-2024-56319
Matter (aka connectedhomeip/Project CHIP) CVE-2024-56319 affects versions up to 1.4.0.0 before commit e3277eb. The issue is an unlimited number of user labels appended in a userlabel cluster, leading to a denial of service via resource exhaustion. The CVSS 3.1 vector indicates network attack with...
CVE-2024-56318
Matter (aka connectedhomeip/Project CHIP) contains a NULL pointer dereference in TCPBase::ProcessSingleMessage triggered by TCP packets with zero messageSize, affecting raw_TCP.cpp in versions up to and including 1.4.0.0 before commit 27ca6ec. This could lead to denial of service. Affected produc...
CVE-2024-56319
In Matter aka connectedhomeip or Project CHIP through 1.4.0.0 before e3277eb, unlimited user label appends in a userlabel cluster can lead to a denial of service resource exhaustion...
Matter 安全漏洞
Matter Project CHIP is a unified open source application layer connectivity standard open sourced by the Connectivity Standards Alliance. Designed to enable developers and device manufacturers to connect and build reliable, secure ecosystems and improve compatibility between connected home device...