CVE-2025-14693

A vulnerability has been found in Ugreen DH2100+ up to 5.3.0. This affects an unknown function of the component USB Handler. Such manipulation leads to symlink following. The attack can be executed directly on the physical device. The exploit has been disclosed to the public and may be used. It i...

CVE-2019-5625

The Android mobile application Halo Home before 1.11.0 stores OAuth authentication and refresh access tokens in a clear text file. This file persists until the user logs out of the application and reboots the device. This vulnerability can allow an attacker to impersonate the legitimate user by...

CVE-2019-17391

An issue was discovered in the Espressif ESP32 mask ROM code 2016-06-08 0 through 2. Lack of anti-glitch mitigations in the first stage bootloader of the ESP32 chip allows an attacker with physical access to the device to read the contents of read-protected eFuses, such as flash encryption and...

CVE-2025-2921 Netis WF-2404 passwd default password

A vulnerability classified as critical has been found in Netis WF-2404 1.1.124EN. Affected is an unknown function of the file /etc/passwd. The manipulation with the input Realtek leads to use of default password. It is possible to launch the attack on the physical device. The complexity of an...

CVE-2025-20653

In da, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure, if an attacker has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS09291064; Issue I...

Authentication flaw

Keep My Notes v1.80.147 allows an attacker with physical access to the victim's device to bypass the application's password/pin lock to access user data. This is possible due to lack of adequate security controls to prevent dynamic code manipulation...

Authentication flaw

An authentication bypass in the debug interface in Mercedes-Benz HERMES 1 allows an attacker with physical access to device hardware to obtain system information...

File Explorer v1.4 iOS - Multiple Persistent Vulnerabilities

Document Title: =============== File Explorer v1.4 iOS - Multiple Persistent Vulnerabilities References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2219 Release Date: ============= 2020-05-03 Vulnerability Laboratory ID VL-ID:...

CVE-2019-19579

An issue was discovered in Xen through 4.12.x allowing attackers to gain host OS privileges via DMA in a situation where an untrusted domain has access to a physical device and assignable-add is not used, because of an incomplete fix for CVE-2019-18424. XSA-302 relies on the use of libxl's...

BD Alaris 8015 PC Unit (Update B)

1. EXECUTIVE SUMMARY CVSS v3 6.8 ATTENTION: Low skill level to exploit Vendor: Becton, Dickinson and Company BD Equipment: BD Alaris 8015 PC Unit Vulnerabilities: Insufficiently Protected Credentials, Security Features 2. UPDATE INFORMATION This updated advisory is a follow-up to the advisory...

Song Exporter v2.1.1 RS iOS文件包含漏洞

Song Exporter可以将你iOS设备的歌曲通过WiFi传输到同一局域网内任何电脑上的实用工具，让你无需iTunes也能方便的将音乐备份到电脑上。 本地文件包含Web漏洞允许远程攻击者未经授权包含本地文件的请求或系统特定的路径命令，控制网页应用程序或设备。 0 Song Exporter 2.1.1 目前厂商暂无提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： https://itunes.apple.com/us/app/song-exporter-pro/id421646421 Proof of Concept PoC:...

Apple iOS v7.0.2 5S - Denial of Service Vulnerability (PoC)

Document Title: =============== Apple iOS v7.0.2 5S - Denial of Service Vulnerability PoC References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1106 Video: https://www.youtube.com/watch?v=jf4t0yFoSD8 Release Date: ============= 2013-10-02 Vulnerability Laboratory ID VL-ID:...

Facebook Reassures Users, But Hole May Put Mobile Data at Risk

UPDATED: Facebook Security assured users on Thursday who access their Facebook account via Android or iOS devices that mobile sessions on the social networking site aren’t vulnerable to hacking. However, research published this week suggests otherwise. A blog entry posted by UK-based mobile...