UBUNTU-CVE-2026-45921

In the Linux kernel, the following vulnerability has been resolved: mtd: parsers: Fix memory leak in mtdparsertplinksafeloaderparse The function mtdparsertplinksafeloaderparse allocates buf via mtdparsertplinksafeloaderreadtable. If the allocation for partsidx.name fails inside the loop, the code...

CVE-2026-45921 mtd: parsers: Fix memory leak in mtd_parser_tplink_safeloader_parse()

In the Linux kernel, the following vulnerability has been resolved: mtd: parsers: Fix memory leak in mtdparsertplinksafeloaderparse The function mtdparsertplinksafeloaderparse allocates buf via mtdparsertplinksafeloaderreadtable. If the allocation for partsidx.name fails inside the loop, the code...

CVE-2026-45921

CVE-2026-45921 affects the Linux kernel’s mtd: parsers component, specifically the function mtd_parser_tplink_safeloader_parse(). The issue arises when buf allocated by mtd_parser_tplink_safeloader_read_table() is not freed if parts[idx].name allocation fails inside the loop, causing a memory lea...

CVE-2026-45921

In the Linux kernel, the following vulnerability has been resolved: mtd: parsers: Fix memory leak in mtdparsertplinksafeloaderparse The function mtdparsertplinksafeloaderparse allocates buf via mtdparsertplinksafeloaderreadtable. If the allocation for partsidx.name fails inside the loop, the code...

CVE-2026-45921

mtd: parsers: Fix memory leak in mtdparsertplinksafeloaderparse...

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the mtd parser function mtd.parsertplinksafeloader.Parse. This function fails to release the...

PT-2026-43788

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak occurs in the mtd parser tplink safeloader parse function. The function allocates a buffer buf using mtd parser tplink safeloader read table. If the allocation for...

CVE-2023-43137

TPLINK TL-ER5120G 4.0 2.0.0 Build 210817 Rel.80868n has a command injection vulnerability, when an attacker adds ACL rules after authentication, and the rule name parameter has injection points...

CVE-2023-43138

TPLINK TL-ER5120G 4.0 2.0.0 Build 210817 Rel.80868n has a command injection vulnerability, when an attacker adds NAPT rules after authentication, and the rule name has an injection point...

EUVD-2024-53566

Malicious code in bioql PyPI...

CVE-2023-38909

An issue in TPLink Smart Bulb Tapo series L530 before 1.2.4, L510E before 1.1.0, L630 before 1.0.4, P100 before 1.5.0, and Tapo Application 2.8.14 allows a remote attacker to obtain sensitive information via the IV component in the AES128-CBC function...

CVE-2023-38907

An issue in TPLink Smart Bulb Tapo series L530 before 1.2.4, L510E before 1.1.0, L630 before 1.0.4, P100 before 1.5.0, and Tapo Application 2.8.14 allows a remote attacker to replay old messages encrypted with a still valid session key...

CVE-2023-38908

An issue in TPLink Smart Bulb Tapo series L530 before 1.2.4, L510E before 1.1.0, L630 before 1.0.4, P100 before 1.5.0, and Tapo Application 2.8.14 allows a remote attacker to obtain sensitive information via the TSKEP authentication function...

CVE-2023-38906

An issue in TPLink Smart Bulb Tapo series L530 1.1.9, L510E 1.0.8, L630 1.0.3, P100 1.4.9, Smart Camera Tapo series C200 1.1.18, and Tapo Application 2.8.14 allows a remote attacker to obtain sensitive information via the authentication code for the UDP message...

CVE-2024-57357

An issue in TPLINK TL-WPA 8630 TL-WPA8630USV22.0.4 Build 20230427 allows a remote attacker to execute arbitrary code via function sub4256CC, which allows command injection by injecting 'devpwd'...

CVE-2024-57357

An issue in TPLINK TL-WPA 8630 TL-WPA8630USV22.0.4 Build 20230427 allows a remote attacker to execute arbitrary code via function sub4256CC, which allows command injection by injecting 'devpwd'...

CVE-2024-57357

CVE-2024-57357 affects TP-LINK TL-WPA 8630 (US) model, specifically version 2.0.4 Build 20230427, where a vulnerability in function sub_4256CC enables remote command injection via the devpwd parameter, potentially allowing arbitrary code execution. Exploitation details are described as a remote c...

PT-2025-6006 · Tp Link · Tplink Tl-Wpa 8630

Name of the Vulnerable Software and Affected Versions: TPLINK TL-WPA 8630 version 2.0.4 Build 20230427 Description: An issue in TPLINK TL-WPA 8630 allows a remote attacker to execute arbitrary code via function sub 4256CC, which allows command injection by injecting devpwd. Recommendations: As a...

CVE-2024-57357

An issue in TPLINK TL-WPA 8630 TL-WPA8630USV22.0.4 Build 20230427 allows a remote attacker to execute arbitrary code via function sub4256CC, which allows command injection by injecting 'devpwd'...

CVE-2024-57357

An issue in TPLINK TL-WPA 8630 TL-WPA8630USV22.0.4 Build 20230427 allows a remote attacker to execute arbitrary code via function sub4256CC, which allows command injection by injecting 'devpwd'...