UBUNTU-CVE-2026-45921

In the Linux kernel, the following vulnerability has been resolved: mtd: parsers: Fix memory leak in mtdparsertplinksafeloaderparse The function mtdparsertplinksafeloaderparse allocates buf via mtdparsertplinksafeloaderreadtable. If the allocation for partsidx.name fails inside the loop, the code...

CVE-2026-45921

In the Linux kernel, the following vulnerability has been resolved: mtd: parsers: Fix memory leak in mtdparsertplinksafeloaderparse The function mtdparsertplinksafeloaderparse allocates buf via mtdparsertplinksafeloaderreadtable. If the allocation for partsidx.name fails inside the loop, the code...

CVE-2026-45921 mtd: parsers: Fix memory leak in mtd_parser_tplink_safeloader_parse()

In the Linux kernel, the following vulnerability has been resolved: mtd: parsers: Fix memory leak in mtdparsertplinksafeloaderparse The function mtdparsertplinksafeloaderparse allocates buf via mtdparsertplinksafeloaderreadtable. If the allocation for partsidx.name fails inside the loop, the code...

CVE-2026-45921

In the Linux kernel, the memory leak in mtd_parser_tplink_safeloader_parse() was resolved. The function allocates a temporary buffer buf via mtd_parser_tplink_safeloader_read_table(), and if parts[idx].name allocation fails inside the loop, control jumps to err_free without freeing buf. The fix a...

CVE-2026-45921

mtd: parsers: Fix memory leak in mtdparsertplinksafeloaderparse...

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the mtd parser function mtd.parsertplinksafeloader.Parse. This function fails to release the...

PT-2026-43788

In the Linux kernel, the following vulnerability has been resolved: mtd: parsers: Fix memory leak in mtd parser tplink safeloader parse The function mtd parser tplink safeloader parse allocates buf via mtd parser tplink safeloader read table. If the allocation for partsidx.name fails inside the...

CVE-2023-43137

TPLINK TL-ER5120G 4.0 2.0.0 Build 210817 Rel.80868n has a command injection vulnerability, when an attacker adds ACL rules after authentication, and the rule name parameter has injection points...

CVE-2023-43138

TPLINK TL-ER5120G 4.0 2.0.0 Build 210817 Rel.80868n has a command injection vulnerability, when an attacker adds NAPT rules after authentication, and the rule name has an injection point...

EUVD-2024-53566

Malicious code in bioql PyPI...

CVE-2023-38909

An issue in TPLink Smart Bulb Tapo series L530 before 1.2.4, L510E before 1.1.0, L630 before 1.0.4, P100 before 1.5.0, and Tapo Application 2.8.14 allows a remote attacker to obtain sensitive information via the IV component in the AES128-CBC function...

CVE-2023-38907

An issue in TPLink Smart Bulb Tapo series L530 before 1.2.4, L510E before 1.1.0, L630 before 1.0.4, P100 before 1.5.0, and Tapo Application 2.8.14 allows a remote attacker to replay old messages encrypted with a still valid session key...

CVE-2023-38908

An issue in TPLink Smart Bulb Tapo series L530 before 1.2.4, L510E before 1.1.0, L630 before 1.0.4, P100 before 1.5.0, and Tapo Application 2.8.14 allows a remote attacker to obtain sensitive information via the TSKEP authentication function...

CVE-2023-38906

An issue in TPLink Smart Bulb Tapo series L530 1.1.9, L510E 1.0.8, L630 1.0.3, P100 1.4.9, Smart Camera Tapo series C200 1.1.18, and Tapo Application 2.8.14 allows a remote attacker to obtain sensitive information via the authentication code for the UDP message...

CVE-2024-57357

An issue in TPLINK TL-WPA 8630 TL-WPA8630USV22.0.4 Build 20230427 allows a remote attacker to execute arbitrary code via function sub4256CC, which allows command injection by injecting 'devpwd'...

CVE-2024-57357

An issue in TPLINK TL-WPA 8630 TL-WPA8630USV22.0.4 Build 20230427 allows a remote attacker to execute arbitrary code via function sub4256CC, which allows command injection by injecting 'devpwd'...

CVE-2024-57357

An issue in TPLINK TL-WPA 8630 TL-WPA8630USV22.0.4 Build 20230427 allows a remote attacker to execute arbitrary code via function sub4256CC, which allows command injection by injecting 'devpwd'...

CVE-2024-57357

CVE-2024-57357 affects TP-LINK TL-WPA 8630 (US) model, specifically version 2.0.4 Build 20230427, where a vulnerability in function sub_4256CC enables remote command injection via the devpwd parameter, potentially allowing arbitrary code execution. Exploitation details are described as a remote c...

CVE-2024-57357

An issue in TPLINK TL-WPA 8630 TL-WPA8630USV22.0.4 Build 20230427 allows a remote attacker to execute arbitrary code via function sub4256CC, which allows command injection by injecting 'devpwd'...

PT-2025-6006 · Tp Link · Tplink Tl-Wpa 8630

Name of the Vulnerable Software and Affected Versions: TPLINK TL-WPA 8630 version 2.0.4 Build 20230427 Description: An issue in TPLINK TL-WPA 8630 allows a remote attacker to execute arbitrary code via function sub 4256CC, which allows command injection by injecting devpwd. Recommendations: As a...