SUSE CVE-2024-42086

In the Linux kernel, the following vulnerability has been resolved: iio: chemical: bme680: Fix overflows in compensate functions There are cases in the compensate functions of the driver that there could be overflows of variables due to bit shifting ops. These implications were initially discusse...

Plug and Track Sensor Net Connect 安全漏洞

Plug and Track Sensor Net Connect is a smart sensor from the French company Plug and Track. It is used to monitor temperature, humidity, pressure, CO2 and other parameters. A security vulnerability exists in Plug and Track Sensor Net Connect version V2, which stems from passwords being stored in...

PT-2024-23626 · Unknown · Plug&Track Sensor Net Connect V2

Name of the Vulnerable Software and Affected Versions: Plug&Track Sensor Net Connect V2 version 2.24 Description: A Cross-Site Request Forgery CSRF issue can be exploited by remote attackers to perform state-changing operations with administrative privileges. This is done by luring authenticated...

Plug and Track Sensor Net Connect 安全漏洞

Plug and Track Sensor Net Connect is a smart sensor from the French company Plug and Track. It is used to monitor temperature, humidity, pressure, CO2 and other parameters. A security vulnerability exists in Plug and Track Sensor Net Connect version V2, which stems from the presence of cross-site...

Plug and Track Sensor Net Connect 安全漏洞

Plug and Track Sensor Net Connect is a smart sensor from the French company Plug and Track. It is used to monitor temperature, humidity, pressure, CO2 and other parameters. A security vulnerability exists in Plug and Track Sensor Net Connect version V2, which originates from the insertion of...

Plug and Track Sensor Net Connect 安全漏洞

Plug and Track Sensor Net Connect is a smart sensor from the French company Plug and Track. It is used to monitor temperature, humidity, pressure, CO2 and other parameters. A security vulnerability exists in Plug and Track Sensor Net Connect version V2, which stems from a cross-site request forge...

AZL-49316 CVE-2024-42144 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: thermal/drivers/mediatek/lvtsthermal: Check NULL ptr on lvtsdata Verify that lvtsdata is not NULL before using it...

DEBIAN-CVE-2024-42086

In the Linux kernel, the following vulnerability has been resolved: iio: chemical: bme680: Fix overflows in compensate functions There are cases in the compensate functions of the driver that there could be overflows of variables due to bit shifting ops. These implications were initially discusse...

UBUNTU-CVE-2024-42086

In the Linux kernel, the following vulnerability has been resolved: iio: chemical: bme680: Fix overflows in compensate functions There are cases in the compensate functions of the driver that there could be overflows of variables due to bit shifting ops. These implications were initially discusse...

CVE-2024-42086 iio: chemical: bme680: Fix overflows in compensate() functions

In the Linux kernel, the following vulnerability has been resolved: iio: chemical: bme680: Fix overflows in compensate functions There are cases in the compensate functions of the driver that there could be overflows of variables due to bit shifting ops. These implications were initially discusse...

CrowdStrike Warns of New Phishing Scam Targeting German Customers

CrowdStrike is alerting about an unfamiliar threat actor attempting to capitalize on the Falcon Sensor update fiasco to distribute dubious installers targeting German customers as part of a highly targeted campaign. The cybersecurity company said it identified what it described as an unattributed...

CrowdStrike Explains Friday Incident Crashing Millions of Windows Devices

Cybersecurity firm CrowdStrike on Wednesday blamed an issue in its validation system for causing millions of Windows devices to crash as part of a widespread outage late last week. "On Friday, July 19, 2024 at 04:09 UTC, as part of regular operations, CrowdStrike released a content configuration...

CVE-2024-40933

In the Linux kernel, the following vulnerability has been resolved: iio: temperature: mlx90635: Fix ERRPTR dereference in mlx90635probe When devmregmapiniti2c fails, regmapee could be error pointer, instead of checking for ISERRregmapee, regmap is checked which looks like a copy paste error...

UBUNTU-CVE-2024-40933

In the Linux kernel, the following vulnerability has been resolved: iio: temperature: mlx90635: Fix ERRPTR dereference in mlx90635probe When devmregmapiniti2c fails, regmapee could be error pointer, instead of checking for ISERRregmapee, regmap is checked which looks like a copy paste error...

CVE-2024-40933

The CVE-2024-40933 entry concerns a Linux kernel IIO temperature driver mlx90635 issue. The vulnerability arises in mlx90635_probe() where a failure of devm_regmap_init_i2c() could yield regmap_ee as an error pointer rather than being checked with IS_ERR(regmap_ee), effectively a copy-paste error...

CVE-2024-39530 Junos OS: Attempting to access specific sensors on platforms not supporting these will lead to a chassisd crash

An Improper Check for Unusual or Exceptional Conditions vulnerability in the chassis management daemon chassisd of Juniper Networks Junos OS allows an unauthenticated, network-based attacker to cause a Denial-of-Service DoS. If an attempt is made to access specific sensors on platforms not...

Juniper Junos OS Vulnerability (JSA82982)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA82982 advisory. - A Heap-based Buffer Overflow vulnerability in the telemetry sensor process sensord of Juniper Networks Junos OS on MX240, MX480, MX960 platforms using MPC10E causes a stea...

Numeric Truncation Error

Overview Affected versions of this package are vulnerable to Numeric Truncation Error through the handling of specially crafted inputs. An attacker can execute arbitrary code on the target system by sending a malformed data packet. Remediation Upgrade Microsoft.Azure.Kinect.Sensor to version or...

PT-2024-5542 · Juniper Networks · Junos

Name of the Vulnerable Software and Affected Versions: Junos OS versions 21.2R3-S5 through 21.2R3-S7 Junos OS versions 21.4R3-S4 through 21.4R3-S6 Junos OS versions 22.2R3 through 22.2R3-S4 Junos OS versions 22.3R2 through 22.3R3-S2 Junos OS versions 22.4R1 through 22.4R3 Junos OS versions 23.2R1...

The vulnerability of the thermaldebug_tzremove() function, a temperature sensor in the Linux kernel, allows a malicious actor to cause a service failure.

The vulnerability of the thermaldebugtzremove function in the drivers/thermal/thermaldebugfs.c file of the Linux kernel’s temperature sensor module is related to a memory leak. Exploiting this vulnerability could allow an attacker to cause a system failure...