EUVD-2026-14960

A Missing Authentication for Critical Function vulnerability in Pharos Controls Mosaic Show Controller firmware version 2.15.3 could allow an unauthenticated attacker to bypass authentication and execute arbitrary commands with root privileges...

CVE-2026-2417

A Missing Authentication for Critical Function vulnerability in Pharos Controls Mosaic Show Controller firmware version 2.15.3 could allow an unauthenticated attacker to bypass authentication and execute arbitrary commands with root privileges...

CVE-2026-2417

The CVE-2026-2417 entry concerns Pharos Controls Mosaic Show Controller firmware 2.15.3, describing a Missing Authentication for Critical Function that could let an unauthenticated attacker bypass authentication and run arbitrary commands with root privileges. The vulnerability is rated CRITICAL ...

CVE-2026-2417 Missing Authentication for Critical Function in Pharos Controls Mosaic Show Controller

A Missing Authentication for Critical Function vulnerability in Pharos Controls Mosaic Show Controller firmware version 2.15.3 could allow an unauthenticated attacker to bypass authentication and execute arbitrary commands with root privileges...

Pharos Controls Mosaic Show Controller

RISK EVALUATION Successful exploitation of this vulnerability could allow an unauthenticated attacker to execute arbitrary commands with root privileges. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability. Minimize...

Pharos Controls Mosaic Show Controller 访问控制错误漏洞

Pharos Controls Mosaic Show Controller is an embedded control device developed by the British company Pharos, used for lighting control and multimedia scene orchestration. Version 2.15.3 of Pharos Controls Mosaic Show Controller contains a security vulnerability due to the lack of authentication...

EUVD-2018-4879

Malware in sbrugna...

EUVD-2017-11929

Malware in sbrugna...

Software-Security-Learning

It is an offensive tool for binary analysis. The repository Software-Security-Learning contains a collection of resources for learning software security, including tools and tutorials for binary analysis. The tools listed include Pharos, Angr, Vuzzer, PEDA, and pwntools, which are used for static...

Kaiju - A Binary Analysis Framework Extension For The Ghidra Software Reverse Engineering Suite

CERT Kaiju is a collection of binary analysis tools for Ghidra. This is a Ghidra/Java implementation of some features of the CERT Pharos Binary Analysis Framework, particularly the function hashing and malware analysis tools, but is expected to grow new tools and capabilities over time. As this i...

Software-Security-Learning

It is an offensive tool for binary exploitation. The primary CVE ID is not explicitly mentioned, but the repository contains information on various software security topics, including binary exploitation. The target product/service or framework is not specified, but the repository includes tools...

Pharos Controls Device Information Disclosure Vulnerability

Pharos Controls devices is a lighting control device from Pharos Architectural Controls, UK. A security vulnerability exists in Pharos Controls devices. A remote attacker can exploit this vulnerability by sending a direct request to the default/index.lsp or default/log.lsp URIs to obtain sensitiv...

Information disclosure

Pharos Controls devices allow remote attackers to obtain potentially sensitive information via a direct request for the default/index.lsp or default/log.lsp URI...

CVE-2018-12926

Pharos Controls devices allow remote attackers to obtain potentially sensitive information via a direct request for the default/index.lsp or default/log.lsp URI...

CVE-2018-12926

Pharos Controls devices allow remote attackers to obtain potentially sensitive information via a direct request for the default/index.lsp or default/log.lsp URI...

CVE-2018-12926

Pharos Controls devices are affected by a remote information-disclosure vulnerability. An attacker can retrieve potentially sensitive data by issuing a direct request to the default/index.lsp or default/log.lsp URIs. The available sources describe this as an information-disclosure issue affecting...

The vulnerability of the psnotifyd application, a printing software for Pharos PopUp, allows a intruder to execute arbitrary code.

The vulnerability of the psnotifyd application for Pharos PopUp printing is caused by buffer overflow. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially crafted package...

The vulnerability of the psnotifyd application, a printing software for Pharos PopUp, allows a intruder to execute arbitrary code.

The vulnerability of the psnotifyd application for Pharos PopUp printing is caused by buffer overflow. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially crafted package...

Pharos PopUp Printer Client DecodeBinary Code Execution Vulnerability(CVE-2017-2788)

Summary An exploitable buffer overflow exists in the psnotifyd application of the Pharos PopUp printer client version 9.0. A specially crafted packet can be sent to the victim's computer and can lead to a heap based buffer overflow resulting in remote code execution. This client is always...

Pharos PopUp Printer Client DecodeString Code Execution Vulnerability(CVE-2017-2786)

Summary A denial of service vulnerability exists in the psnotifyd application of the Pharos PopUp printer client version 9.0. A specially crafted packet can be sent to the victim's computer and can lead to an out of bounds read causing a crash and a denial of service. Tested Versions Pharos PopUp...