CVE-2020-10263

An issue was discovered on XIAOMI XIAOAI speaker Pro LX06 1.52.4. Attackers can get root shell by accessing the UART interface and then they can i read Wi-Fi SSID or password, ii read the dialogue text files between users and XIAOMI XIAOAI speaker Pro LX06, iii use Text-To-Speech tools pretend...

Himalaya Xiaoya nano smart speaker 安全漏洞

Himalaya Xiaoya nano smart speaker is a smart speaker from the Chinese company Himalaya Himalaya. A security vulnerability exists in Himalaya Xiaoya nano smart speaker version 1.6.96, which stems from an incorrect privilege modification...

3abn (>=1.0.0 <=2.1.11), @2003scape/rsc-sounds (>=1.0.0 <=1.0.1) +375 more potentially affected by CVE-2024-21526 via speaker (>=0.0.10 <=0.5.5)

speaker NPM version =0.0.10, =1.0.0, =1.0.0, =1.0.0, =0.1.0, =0.2.0, =0.1.0, =1.0.0, =0.1.0, =1.0.0, =0.1.0, =0.1.5 - @blitzcli/cli =0.1.0 and more Source cves: CVE-2024-21526 Source advisory: OSV:GHSA-W5FC-GJ3H-26RX...

Lock and Code S1Ep6: Recognizing facial recognition’s flaws with Chris Boyd

This week on Lock and Code, we discuss the top security headlines generated right here on Labs and around the Internet. In addition, we talk to Chris Boyd, lead malware intelligence analyst at Malwarebytes, about facial recognition technology—its early history, its proven failures at accuracy, an...