Lucene search
K

63 matches found

RedhatCVE
RedhatCVE
added 2025/04/26 6:36 a.m.8 views

CVE-2025-25984

An issue in Macro-video Technologies Co.,Ltd V380E6C1 IP camera HwHsAKPIQpWFXHR 1020302 allows a physically proximate attacker to execute arbitrary code via UART component...

6.8CVSS7.8AI score0.00344EPSS
Exploits2References1
Cvelist
Cvelist
added 2025/02/28 12:0 a.m.12 views

CVE-2024-44754

Cryptographic key extraction from internal flash in Minut M2 with firmware version 15142 allows physically proximate attackers to inject modified firmware into any other Minut M2 product via USB...

0.00208EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2024/08/30 10:20 a.m.6 views

SUSE CVE-2023-45896

ntfs3 in the Linux kernel through 6.8.0 allows a physically proximate attacker to read kernel memory by mounting a filesystem e.g., if a Linux distribution is configured to allow unprivileged mounts of removable media and then leveraging local access to trigger an out-of-bounds read. A length val...

7.1CVSS8AI score0.00195EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/12/04 12:0 a.m.8 views

Yale IA-210 Alarm Security Vulnerability

The Yale IA-210 Alarm is a residential alarm from Yale. The Yale IA-210 Alarm v1.0 version suffers from a security vulnerability that stems from a weak encryption mechanism in the RFID tag, which allows an attacker to create a cloned tag by physically approaching the original tag...

6.5CVSS6.8AI score0.0018EPSS
Exploits4References1
Positive Technologies
Positive Technologies
added 2023/12/04 12:0 a.m.6 views

PT-2023-20863 · Yale · Yale Ia-210 Alarm

Name of the Vulnerable Software and Affected Versions: Yale IA-210 Alarm version 1.0 Description: The issue is related to weak encryption mechanisms in RFID Tags, allowing attackers to create a cloned tag via physical proximity to the original. Recommendations: For Yale IA-210 Alarm version 1.0,...

8.1CVSS6.5AI score0.00466EPSS
Exploits4References6
CNNVD
CNNVD
added 2023/12/04 12:0 a.m.7 views

Yale Keyless Lock Security Vulnerability

Yale Keyless Lock is a keyless connected smart lock from Yale. A security vulnerability exists in Yale Keyless Lock v1.0, which stems from a weak encryption mechanism in the RFID tags, leading to an attacker being able to create a clone of the original tag by getting physically close to it...

6.5CVSS6.7AI score0.0018EPSS
Exploits4References1
RedHat Linux
RedHat Linux
added 2023/11/14 3:46 p.m.3 views

kernel: Information leak in l2cap_parse_conf_req in net/bluetooth/l2cap_core.c

An information leak vulnerability was found in the Linux kernel's implementation of logical link control and adaptation protocol L2CAP, part of the Bluetooth stack in the l2capparseconfreq function. An attacker with physical access within the range of standard Bluetooth transmission could use thi...

6.5CVSS6.6AI score0.00395EPSS
Exploits0References5
Apple
Apple
added 2023/09/18 12:0 a.m.222 views

About the security content of tvOS 17

About the security content of tvOS 17 This document describes the security content of tvOS 17. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent...

9.8CVSS8.7AI score0.03609EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/08/15 8:15 p.m.8 views

CVE-2023-39841

Missing encryption in the RFID tag of Etekcity 3-in-1 Smart Door Lock v1.0 allows attackers to create a cloned tag via brief physical proximity to the original device...

4.6CVSS5.8AI score0.00122EPSS
Exploits1References1
OSV
OSV
added 2023/08/15 8:15 p.m.4 views

CVE-2023-39843

Missing encryption in the RFID tag of Suleve 5-in-1 Smart Door Lock v1.0 allows attackers to create a cloned tag via brief physical proximity to the original device...

2.4CVSS5.8AI score
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/08/15 12:0 a.m.3 views

CVE-2023-39842

Missing encryption in the RFID tag of Digoo DG-HAMB Smart Home Security System v1.0 allows attackers to create a cloned tag via brief physical proximity to the original device...

5.2AI score0.00122EPSS
Exploits1References1
CNNVD
CNNVD
added 2023/08/15 12:0 a.m.5 views

Digoo DG-HAMB Smart Home Security System 安全漏洞

Digoo DG-HAMB Smart Home Security System is a smart home security alarm system suite from Digoo. A security vulnerability exists in the Digoo DG-HAMB Smart Home Security System v1.0 version. An attacker exploiting this vulnerability could create a cloned tag by briefly physically approaching the...

2.4CVSS5AI score0.00122EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2023/06/06 8:53 a.m.7 views

kernel: use-after-free in l2cap_connect and l2cap_le_connect_req in net/bluetooth/l2cap_core.c

A use-after-free flaw was found in the Linux kernel's implementation of logical link control and adaptation protocol L2CAP, part of the Bluetooth stack in the l2capconnect and l2capleconnectreq functions. An attacker with physical access within the range of standard Bluetooth transmission could...

8.8CVSS6.8AI score0.02014EPSS
Exploits0References5
OSV
OSV
added 2023/05/18 8:15 a.m.11 views

CVE-2023-33203

The Linux kernel before 6.2.9 has a race condition and resultant use-after-free in drivers/net/ethernet/qualcomm/emac/emac.c if a physically proximate attacker unplugs an emac based device...

6.4CVSS8.3AI score
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 5:4 a.m.5 views

SUSE CVE-2016-3136

The mctu232msrtostate function in drivers/usb/serial/mctu232.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service NULL pointer dereference and system crash via a crafted USB device without two interrupt-in endpoint descriptors...

4.6CVSS7.2AI score0.01797EPSS
Exploits2References8
SUSE CVE
SUSE CVE
added 2023/02/15 3:23 a.m.12 views

SUSE CVE-2022-42896

There are use-after-free vulnerabilities in the Linux kernel's net/bluetooth/l2capcore.c's l2capconnect and l2capleconnectreq functions which may allow code execution and leaking kernel memory respectively remotely via Bluetooth. A remote attacker could execute code leaking kernel memory via...

6.8CVSS7.4AI score0.02014EPSS
Exploits0References23
Tenable Nessus
Tenable Nessus
added 2022/12/13 12:0 a.m.43 views

Amazon Linux 2 : kernel (ALAS-2022-1903)

The version of kernel installed on the remote host is prior to 4.14.301-224.520. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2022-1903 advisory. A vulnerability was found in Linux Kernel. It has been declared as problematic. Affected by this vulnerability is...

8.8CVSS5.4AI score0.02014EPSS
Exploits1References62
CNNVD
CNNVD
added 2022/09/20 12:0 a.m.5 views

Medtronic NGP 600 Series 安全漏洞

The Medtronic NGP 600 Series is a line of insulin pumps and accessories from Medtronic, Inc. A security vulnerability exists in Medtronic NGP 600 Series version 2.4, which originates from the exploitation of wireless signals that require proximity to the patient and the device. The following...

4.8CVSS5.3AI score0.00319EPSS
Exploits0References5
OSV
OSV
added 2022/09/02 12:0 a.m.26 views

CVE-2022-39176

BlueZ before 5.59 allows physically proximate attackers to obtain sensitive information because profiles/audio/avrcp.c does not validate paramslen...

8.8CVSS6.1AI score0.00657EPSS
Exploits0References7
Ubuntu
Ubuntu
added 2022/05/03 9:4 p.m.116 views

USN-5390-2: Linux kernel (Raspberry Pi) vulnerabilities

David Bouman discovered that the netfilter subsystem in the Linux kernel did not properly validate passed user register indices. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. CVE-2022-1015 David Bouman discovered that the netfilter subsystem in t...

7.8CVSS7.1AI score0.01467EPSS
Exploits11
Rows per page
Query Builder