74 matches found
CVE-2025-60959
OS Command Injection vulnerability in EndRun Technologies Sonoma D12 Network Time Server GPS F/W 6010-0071-000 Ver 4.00 allows attackers to gain sensitive information...
EUVD-2025-32563
OS Command Injection vulnerability in EndRun Technologies Sonoma D12 Network Time Server GPS F/W 6010-0071-000 Ver 4.00 allows attackers to execute arbitrary code, cause a denial of service, gain escalated privileges, and gain sensitive information...
CVE-2025-60963
OS Command Injection vulnerability in EndRun Technologies Sonoma D12 Network Time Server GPS F/W 6010-0071-000 Ver 4.00 allows attackers to execute arbitrary code, cause a denial of service, gain escalated privileges, and gain sensitive information...
CVE-2025-60961
Cross Site Scripting XSS vulnerability in EndRun Technologies Sonoma D12 Network Time Server GPS F/W 6010-0071-000 Ver 4.00 allows attackers to gain sensitive information, and possibly other unspecified impacts...
CVE-2025-60956
Cross Site Request Forgery CSRF vulnerability in EndRun Technologies Sonoma D12 Network Time Server GPS F/W 6010-0071-000 Ver 4.00 allows attackers to execute arbitrary code, cause a denial of service, gain escalated privileges, and gain sensitive information...
PT-2025-40933
Name of the Vulnerable Software and Affected Versions EndRun Technologies Sonoma D12 Network Time Server GPS version 4.00 Description A directory traversal issue exists in EndRun Technologies Sonoma D12 Network Time Server GPS firmware version 4.00. This allows attackers to potentially access...
CVE-2025-60969
Directory Traversal vulnerability in EndRun Technologies Sonoma D12 Network Time Server GPS F/W 6010-0076-000 Ver 4.00 allows attackers to gain sensitive information...
CVE-2025-60962
OS Command Injection vulnerability in EndRun Technologies Sonoma D12 Network Time Server GPS F/W 6010-0071-000 Ver 4.00 allows attackers to gain sensitive information, and possibly other unspecified impacts...
CVE-2025-60960
OS Command Injection vulnerability in EndRun Technologies Sonoma D12 Network Time Server GPS F/W 6010-0071-000 Ver 4.00 allows attackers to execute arbitrary code, cause a denial of service, gain escalated privileges, and gain sensitive information...
CVE-2025-60967
EndRun Technologies Sonoma D12 Network Time Server (GPS) firmware 6010-0076-000 Ver 4.00 is affected by a Cross Site Scripting (XSS) vulnerability (CVE-2025-60967). The issue, as described across multiple sources, enables attackers to obtain sensitive information. The CVSSv3.1 vector is CVSS:3.1/...
CVE-2025-60965
CVE-2025-60965 affects EndRun Technologies Sonoma D12 Network Time Server (GPS) firmware 6010-0071-000, version 4.00. The vulnerability is OS command injection in the device’s command processing path, enabling potential arbitrary code execution, denial of service, privilege escalation, and inform...
CVE-2025-60957
OS Command Injection vulnerability in EndRun Technologies Sonoma D12 Network Time Server GPS F/W 6010-0071-000 Ver 4.00 allows attackers to execute arbitrary code, cause a denial of service, gain escalated privileges, and gain sensitive information...
PT-2025-39443
Name of the Vulnerable Software and Affected Versions Dell Wireless 5932e and Qualcomm Snapdragon X62 Firmware and GNSS/GPS Driver versions prior to 3.2.0.22 Description The Dell Wireless 5932e and Qualcomm Snapdragon X62 Firmware and GNSS/GPS Driver contains an Unquoted Search Path or Element...
GPS Spoofing Attacks on AI-Based Navigation Systems with Obstacle Avoidance in UAV
Recently, approaches using Deep Reinforcement Learning DRL have been proposed to solve UAV navigation systems in complex and unknown environments. However, despite extensive research and attention, systematic studies on various security aspects have not yet been conducted. Therefore, in this pape...
CVE-2023-20832
In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08014144; Issue ID: ALPS08013530...
CVE-2023-21650
Memory Corruption in GPS HLOS Driver when injectFdclData receives data with invalid data length...
Google Pixel 安全漏洞
Google Pixel is a smartphone from Google USA. A security vulnerability exists in Google Pixel that stems from a lack of boundary checking in m3326gpswrite and m3326gpsread in gps.s. An out-of-bounds read may exist...
PT-2024-10658 · Mediatek · Mediatek Gps Hal
Name of the Vulnerable Software and Affected Versions: Mediatek GPS HAL affected versions not specified Description: The issue is related to a possible out of bounds write in the update gps sv and output vzw debug functions of the gpshal worker.c file, due to a missing bounds check. This could le...
Google Pixel 安全漏洞
Google Pixel is a smartphone from Google, an American company. Google Pixel suffers from a security vulnerability that originates in the updategpssv and outputgpssv sections of vendor/mediatek/proprietary/hardware/connectivity/gps/gpshal/src/gpshalwor A missing bounds check in updategpssv and...
Traccar 安全漏洞
Traccar is a Java-based website builder that provides GPS tracking capabilities from Traccar, Inc. in the United States. The software supports more than 170 GPS protocols and more than 1500 models of GPS tracking devices.Traccar can be used with any major SQL database system. It also provides an...