CVE-2026-54325

Pi is a minimal terminal coding harness. Pi before 0.79.0 loaded project-local configuration and resources from a repository's .pi directory without first asking the user to trust that repository. This included project-local extensions, which are executable TypeScript or JavaScript modules loaded...

CVE-2022-49946 clk: bcm: rpi: Prevent out-of-bounds access

In the Linux kernel, the following vulnerability has been resolved: clk: bcm: rpi: Prevent out-of-bounds access The while loop in raspberrypidiscoverclocks relies on the assumption that the id of the last clock element is zero. Because this data comes from the Videocore firmware and it doesn't...

CVE-2020-24572

An issue was discovered in includes/webconsole.php in RaspAP 2.5. With authenticated access, an attacker can use a misconfigured and virtually unrestricted web console to attack the underlying OS Raspberry Pi running this software, and execute commands on the system including ones for uploading o...

camera-pi 安全漏洞

camera-pi is a camera module by Michael Horne Personal Developer. A security vulnerability exists in camera-pi version 1.0, which stems from the mishandling of user input passed to the position GET parameter in the tilt.php script, which could allow an attacker to execute arbitrary commands by...