Lucene search
+L

15 matches found

RedHat Linux
RedHat Linux
added 4 days ago9 views

Important: Red Hat Security Advisory: Red Hat Edge Manager Version 1.1.3 Security Update

Red Hat Edge Manager Version 1.1.3 Security Update Red Hat Edge Manager RHEM provides simple, scalable, and security-focused management of edge devices and applications. It supports image-mode RHEL and container workloads that run on Podman/Docker or Kubernetes. RHEM is now available as a...

10CVSS6.8AI score0.02474EPSS
Exploits7References32
EUVD
EUVD
added 2026/07/08 1:48 p.m.5 views

EUVD-2026-42247

Capgo before 12.128.2 contains an authorization bypass vulnerability in the public.manifest INSERT policy that allows read-only org members to insert OTA manifest rows. Attackers with read-only org access can inject malicious manifest entries with arbitrary s3path values that are served to device...

7.1CVSS6AI score0.00203EPSS
Exploits0References2
EUVD
EUVD
added 2026/07/01 1:36 p.m.9 views

EUVD-2026-40992

In FatFS R0.16 and earlier contains a FAT32 integer overflow bug in mountvolume where fasize = fs-nfats can wrap, leading to attacker-controlled file-size metadata and unsafe read lengths in downstream callers. This maps to CWE-190 Integer Overflow or Wraparound. Estimated CVSS v3.1 vector:...

7.6CVSS5.9AI score0.0021EPSS
Exploits2References4
ATTACKERKB
ATTACKERKB
added 2026/04/21 9:43 p.m.2 views

CVE-2026-1354

Zero Motorcycles firmware versions 44 and prior enable an attacker to forcibly pair a device with the motorcycle via Bluetooth. Once paired, an attacker can utilize over-the-air firmware updating functionality to potentially upload malicious firmware to the motorcycle. The motorcycle must first b...

6.4CVSS5.7AI score0.00134EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2016-7485

Malware in sbrugna...

9.3CVSS8.3AI score0.02659EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2019-7050

Malware in sbrugna...

6.1CVSS6.3AI score0.00746EPSS
Exploits1References3
Cvelist
Cvelist
added 2025/09/05 5:45 p.m.11 views

CVE-2025-30199 ECOVACS Vacuum and Base Station accept unsigned firmware

ECOVACS vacuum robot base stations do not validate firmware updates, so malicious over-the-air updates can be sent to base station via insecure connection between robot and base station...

7.5CVSS0.00268EPSS
Exploits0References3
CVE
CVE
added 2025/09/05 5:45 p.m.39 views

CVE-2025-30199

ECOVACS vacuum robot base stations are described as not validating firmware updates and operating over an insecure Wi‑Fi link with a deterministic WPA2‑PSK key that can be derived from the device serial number. This enables potential malicious over‑the‑air updates or code execution through the up...

7.5CVSS6.4AI score0.00268EPSS
Exploits0References3Affected Software1
Rapid7 Blog
Rapid7 Blog
added 2022/12/02 9:45 p.m.16 views

Leaked Android Platform Certificates Create Risks for Users

On November 30, 2022, a Google apvi report from Łukasz Siewierski initially filed on November 11, 2022 was made public. The report contained 10 different platform certificates and malware sample SHA256 sums where the malware sample had been signed by a platform certificate — the application signi...

1.7AI score
Exploits0
ThreatPost
ThreatPost
added 2021/02/03 3:40 p.m.81 views

Five Critical Android Bugs Patched, Part of Feb. Security Bulletin

Google patched five critical bugs in its Android operating system as part of its February Security Bulletin. Two of the flaws were remote code execution vulnerabilities found within the Android media framework and system. Three additional critical Qualcomm bugs were reported by Google and patched...

0.4AI score0.04707EPSS
Exploits1References15
ThreatPost
ThreatPost
added 2018/12/04 4:56 p.m.73 views

Google Patches 11 Critical RCE Android Vulnerabilities

Remote code-execution RCE vulnerabilities dominated Google’s December Android Security Bulletin. The flaws are part of a total of 53 unique bugs patched by the Android security team, with a total number of 11 critical bugs – six of which are RCE flaws tied to the operating system’s Media Framewor...

9.3CVSS0.5AI score0.01246EPSS
Exploits1References5
ThreatPost
ThreatPost
added 2018/10/02 4:47 p.m.42 views

Google Patches Critical Vulnerabilities in Android OS

Google patched six critical remote code execution flaws in its Android operating system as part of its October Android Security Bulletin. Four of those remote code execution flaws are tied to Android’s Media framework and impact a wide range of Android devices including Google’s Pixel and Nexus...

10CVSS0.2AI score0.05278EPSS
Exploits0References8
ThreatPost
ThreatPost
added 2017/08/08 8:12 a.m.11 views

Google Patches 10 Critical Bugs in August Android Security Bulletin

Google patched 10 critical remote code execution bugs in its August Android Security Bulletin issued Monday. It warned the most severe RCE vulnerabilities could enable a remote attacker, using a specially crafted file, to execute arbitrary code within the context of a privileged process. The...

1.3AI score
Exploits0References7
ThreatPost
ThreatPost
added 2015/06/17 9:8 a.m.13 views

Samsung's Swift Keyboard Update Mechanism Exposes 600M Devices

The Swift keyboard, installed by default on Samsung Android mobiles, exposes devices to a host of remote attacks that could be executed by attackers ranging from criminals sitting man-in-the-middle on local Wi-Fi networks, to a state actor in an upstream position at an ISP or backbone. NowSecure...

7.4AI score
Exploits0References2
ThreatPost
ThreatPost
added 2014/12/17 11:59 a.m.12 views

CoolReaper Backdoor Found On CoolPad Android Mobile Devices

A popular Android smartphone sold primarily in China and Taiwan but also available worldwide, contains a backdoor from the manufacturer that is being used to push pop-up advertisements and install apps without users’ consent. The Coolpad devices, however, are ripe for much more malicious abuse,...

6.7AI score
Exploits0References2
Rows per page
Query Builder