CVE-2020-37220

Huawei HG630 V2 router contains an authentication bypass vulnerability that allows unauthenticated attackers to obtain administrative access by retrieving the device serial number. Attackers can query the /api/system/deviceinfo endpoint without authentication to extract the SerialNumber field, th...

EUVD-2025-23781

Malicious code in bioql PyPI...

CVE-2025-20990

Improper access control in accessing system device node prior to SMR Aug-2025 Release 1 allows local attackers to access device identifier...

CVE-2025-20990

The CVE-2025-20990 entry concerns improper access control when accessing a system device node, enabling local attackers to obtain the device identifier. Connected sources indicate the issue affects Samsung mobile devices (prior to SMR Aug-2025 Release 1). A concrete remediation is available: upda...

CVE-2021-1070

NVIDIA Jetson AGX Xavier Series, Jetson Xavier NX, TX1, TX2, Nano and Nano 2GB, L4T versions prior to 32.5, contains a vulnerability in the applybinaries.sh script used to install NVIDIA components into the root file system image, in which improper access control is applied, which may lead to an...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a failure to handle a missing SCM device...

CVE-2024-51495 LibreNMS has a Stored XSS ('Cross-site Scripting') in librenms/includes/html/dev-overview-data.inc.php

LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. A Stored Cross-Site Scripting XSS vulnerability in the Device Overview page allows authenticated users to inject arbitrary JavaScript through the "overwriteip" parameter when editing a device. This vulnerability results i...

Frauscher Sensortechnik FDS101 v1.4.24 Code Injection Vulnerability

Frauscher Sensortechnik FDS101 is a diagnostic system device from Frauscher. A code injection vulnerability exists in Frauscher Sensortechnik FDS101 v1.4.24, which stems from the presence of a remote code execution RCE vulnerability...

CVE-2021-1070

NVIDIA Jetson AGX Xavier Series, Jetson Xavier NX, TX1, TX2, Nano and Nano 2GB, L4T versions prior to 32.5, contains a vulnerability in the applybinaries.sh script used to install NVIDIA components into the root file system image, in which improper access control is applied, which may lead to an...

Denial of Service Vulnerability in DPR-343-DA-G Power System Dynamic Recording Device of Guodian Nanrui Science and Technology Co.(CNVD-2020-01583)

DPR-343-DA-G Power System Dynamic Recording Device is a fault recording device based on DL/T860 framework and applied in new generation intelligent substation. A denial of service vulnerability exists in the DPR-343-DA-G Power System Dynamic Recording Device of Guodian Nanrui Technology...

Denial of Service Vulnerability in DPR-343-DA-G Power System Dynamic Recording Device of Guodian Nanrui Science and Technology Co.(CNVD-2020-01585)

DPR-343-DA-G Power System Dynamic Recording Device is a fault recording device based on DL/T860 framework and applied in new generation intelligent substation. A denial-of-service vulnerability exists in the DPR-343-DA-G Power System Dynamic Recording Device of Guodian Nanrui Technology...

Denial of Service Vulnerability in FTR-100 Power System Dynamic Recording Device (CNVD-2020-01296)

FTR-100 Power System Dynamic Recording Device is a device for power system digital substation. A denial of service vulnerability exists in the FTR-100 Power System Dynamic Recording Device, which can be exploited by attackers to cause a denial of service...

Insecure Hash Algorithm

Cordova-Plugin-Device is using the insecure hash algorithm MD5. The use of the insecure hash algorithm for system device information allows an attacker to easily predict the value...

FreeBSD : xen-kernel -- Information leak via internal x86 system device emulation (5023f559-27e2-11e5-a4a5-002590263bf5)

The Xen Project reports : Emulation routines in the hypervisor dealing with certain system devices check whether the access size by the guest is a supported one. When the access size is unsupported these routines failed to set the data to be returned to the guest for read accesses, so that...

Fedora 20 : xen-4.3.3-12.fc20 (2015-3721)

HVM qemu unexpectedly enabling emulated VGA graphics backends XSA-119, CVE-2015-2152 Hypervisor memory corruption due to x86 emulator flaw XSA-123, CVE-2015-2151 Information leak via internal x86 system device emulation, Information leak through version information hypercall Note that Tenable...

Fedora 22 : xen-4.5.0-6.fc22 (2015-3935)

Additional patch for XSA-98 on arm64 HVM qemu unexpectedly enabling emulated VGA graphics backends XSA-119, CVE-2015-2152 Hypervisor memory corruption due to x86 emulator flaw XSA-123, CVE-2015-2151 Information leak via internal x86 system device emulation, Information leak through version...

Motorola netOctopus agent privileg eescalation

.NantSys system device allows processor registers modification...

Driver Flighting Check for System Ring2

Evaluates to true if client machine is targeting to Ring2 of System Generic device class...