PT-2023-25460 · Unknown · Qubo Smart Plug 10A

Name of the Vulnerable Software and Affected Versions: Qubo Smart Plug10A version HSP02 01 01 14 SYSTEM-10 A Description: An issue was discovered in Qubo Smart Plug10A, allowing local attackers to gain sensitive information and other unspecified impact via UART console. Recommendations: For Qubo...

D-Link DIR-619L /bin/mini_upnpd Buffer Overflow Vulnerability

D-Link DIR-619L is a home wireless router from AUO D-Link, designed for home and small office environments, utilizing the IEEE 802.11n wireless standard with a maximum transmission rate of 300Mbps. The D-Link DIR-619L suffers from a buffer overflow vulnerability that originates from improper inpu...

CVE-2023-36160

CVE-2023-36160 affects Qubo Smart Plug10A, specifically version HSP02_01_01_14_SYSTEM-10 A. The issue permits local attackers to access sensitive information via the UART console, with the exposed impact limited to confidentiality (as per the CVSS and vendor notes) and without other confirmed exp...

SUSE CVE-2023-4921

A use-after-free vulnerability in the Linux kernel's net/sched: schqfq component can be exploited to achieve local privilege escalation. When the plug qdisc is used as a class of the qfq qdisc, sending network packets triggers use-after-free in qfqdequeue due to the incorrect .peek handler of...

AZL-28779 CVE-2023-4921 affecting package kernel for versions less than 5.15.133.1-1

A use-after-free vulnerability in the Linux kernel's net/sched: schqfq component can be exploited to achieve local privilege escalation. When the plug qdisc is used as a class of the qfq qdisc, sending network packets triggers use-after-free in qfqdequeue due to the incorrect .peek handler of...

DEBIAN-CVE-2023-4921

A use-after-free vulnerability in the Linux kernel's net/sched: schqfq component can be exploited to achieve local privilege escalation. When the plug qdisc is used as a class of the qfq qdisc, sending network packets triggers use-after-free in qfqdequeue due to the incorrect .peek handler of...

UBUNTU-CVE-2023-4921

A use-after-free vulnerability in the Linux kernel's net/sched: schqfq component can be exploited to achieve local privilege escalation. When the plug qdisc is used as a class of the qfq qdisc, sending network packets triggers use-after-free in qfqdequeue due to the incorrect .peek handler of...

CVE-2023-4921 Use-after-free in Linux kernel's net/sched: sch_qfq component

A use-after-free vulnerability in the Linux kernel's net/sched: schqfq component can be exploited to achieve local privilege escalation. When the plug qdisc is used as a class of the qfq qdisc, sending network packets triggers use-after-free in qfqdequeue due to the incorrect .peek handler of...

CVE-2023-36161

An issue was discovered in Qubo Smart Plug 10A version HSP02010114SYSTEM-10A, allows attackers to cause a denial of service DoS via Wi-Fi deauthentication...

CVE-2023-36161

An issue was discovered in Qubo Smart Plug 10A version HSP02010114SYSTEM-10A, allows attackers to cause a denial of service DoS via Wi-Fi deauthentication...

Design/Logic Flaw

An issue was discovered in Qubo Smart Plug 10A version HSP02010114SYSTEM-10A, allows attackers to cause a denial of service DoS via Wi-Fi deauthentication...

CVE-2023-36161

An issue was discovered in Qubo Smart Plug 10A version HSP02010114SYSTEM-10A, allows attackers to cause a denial of service DoS via Wi-Fi deauthentication...

PT-2023-25461 · Unknown · Qubo Smart Plug 10A

Name of the Vulnerable Software and Affected Versions: Qubo Smart Plug 10A version HSP02 01 01 14 SYSTEM-10A Description: An issue was discovered in the Qubo Smart Plug 10A, allowing attackers to cause a denial of service DoS via Wi-Fi deauthentication. Recommendations: For Qubo Smart Plug 10A...

Qubo Smart Plug Security Vulnerability

Qubo Smart Plug is a smart plug from Qubo. It effectively manages and tracks the energy consumption of devices through real-time power monitoring. A security vulnerability exists in the Qubo Smart Plug version 10A HSP02010114SYSTEM-10A, which stems from a vulnerability that allows an attacker to...

CVE-2023-36161

The CVE-2023-36161 entry concerns the Qubo Smart Plug 10A, specifically version HSP02_01_01_14_SYSTEM-10A. The connected documents corroborate a vulnerability that enables an attacker to cause a denial of service (DoS) through Wi‑Fi deauthentication. The risk is tied to the product’s Wi‑Fi handli...

PT-2023-5190 · Linux +9 · Linux Kernel +9

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A use-after-free vulnerability in the Linux kernel's net/sched: sch qfq component can be exploited to achieve local privilege escalation. When the plug qdisc is used as a class of the...

Security Bulletin: The IBM® Engineering Lifecycle Engineering product using IBM WebSphere Application Server traditional is vulnerable to spoofing when using Web Server Plug-ins (CVE-2022-39161)

Summary When WebSphere Application Server traditional is used with the optionally installed Web Server Plug-ins component, the lack of hostname verification with the Web Plugins could allow an authenticated attacker to conduct spoofing attacks. A man in the middle attacker could conduct an exploi...

CVE-2023-39801

A lack of exception handling in the Renault Easy Link Multimedia System Software Version 283C35519R allows attackers to cause a Denial of Service DoS via supplying crafted WMA files when connecting a device to the vehicle's USB plug and play feature...

CVE-2023-39801

A lack of exception handling in the Renault Easy Link Multimedia System Software Version 283C35519R allows attackers to cause a Denial of Service DoS via supplying crafted WMA files when connecting a device to the vehicle's USB plug and play feature...

CVE-2023-39801

A lack of exception handling in the Renault Easy Link Multimedia System Software Version 283C35519R allows attackers to cause a Denial of Service DoS via supplying crafted WMA files when connecting a device to the vehicle's USB plug and play feature...