11 matches found
EUVD-2023-50906
Malicious code in bioql PyPI...
CVE-2023-46723
lte-pic32-writer is a writer for PIC32 devices. In versions 0.0.1 and prior, those who use sendto.txt are vulnerable to attackers who known the IMEI reading the sendto.txt. The sendto.txt file can contain the SNSsuch as slack and zulip URL and API key. As of time of publication, a patch is not ye...
Code injection
lte-pic32-writer is a writer for PIC32 devices. In versions 0.0.1 and prior, those who use sendto.txt are vulnerable to attackers who known the IMEI reading the sendto.txt. The sendto.txt file can contain the SNSsuch as slack and zulip URL and API key. As of time of publication, a patch is not ye...
CVE-2023-46723
The CVE-2023-46723 issue affects lte-pic32-writer (versions 0.0.1 and earlier). The root cause is that the sendto.txt file can be read by anyone with knowledge of the IMEI, potentially exposing contained SNS URLs and API keys. Documented impact centers on confidentiality (exposure of keys/URLs); ...
CVE-2023-46723 lte-pic32-writer's sendto.txt may disclose URL and the API key
lte-pic32-writer is a writer for PIC32 devices. In versions 0.0.1 and prior, those who use sendto.txt are vulnerable to attackers who known the IMEI reading the sendto.txt. The sendto.txt file can contain the SNSsuch as slack and zulip URL and API key. As of time of publication, a patch is not ye...
CVE-2023-46723 lte-pic32-writer's sendto.txt may disclose URL and the API key
lte-pic32-writer is a writer for PIC32 devices. In versions 0.0.1 and prior, those who use sendto.txt are vulnerable to attackers who known the IMEI reading the sendto.txt. The sendto.txt file can contain the SNSsuch as slack and zulip URL and API key. As of time of publication, a patch is not ye...
CVE-2023-46723 lte-pic32-writer's sendto.txt may disclose URL and the API key
lte-pic32-writer is a writer for PIC32 devices. In versions 0.0.1 and prior, those who use sendto.txt are vulnerable to attackers who known the IMEI reading the sendto.txt. The sendto.txt file can contain the SNSsuch as slack and zulip URL and API key. As of time of publication, a patch is not ye...
PT-2023-30171 · Unknown · Lte-Pic32-Writer
Name of the Vulnerable Software and Affected Versions: lte-pic32-writer versions 0.0.1 and prior Description: The issue affects users of sendto.txt and allows attackers who know the IMEI to read the sendto.txt file, which may contain sensitive information such as SNS URLs and API keys...
lte-pic32-writer security vulnerability
lte-pic32-writer is a writing program for pic32 devices by paijp personal developer. A security vulnerability exists in lte-pic32-writer v0.0.1 and earlier versions, which originates from the fact that users with an IMEI can read sendto.txt, and the sendto.txt file can contain SNS e.g. slack, zul...
RetDec - A Retargetable Machine-Code Decompiler
RetDec is a retargetable machine-code decompiler based on LLVM. The decompiler is not limited to any particular target architecture, operating system, or executable file format: Supported file formats: ELF, PE, Mach-O, COFF, AR archive, Intel HEX, and raw machine code. Supported architectures 32b...
Unchecked Buffer in Microchip TCP/IP Stack Could Allow Remote Code Execution
Unchecked Buffer in Microchip TCP/IP Stack Could Allow Remote Code Execution ============================= ==== General Information ==== ============================= == Executive Summary == The function TCPIPIPV6ProcessFragmentationHeader does not correctly validate the "fragment offset" field i...