CVE-2026-28985

The CVE-2026-28985 issue is a null pointer dereference that was addressed by improved input validation and is fixed in iOS 26.5, iPadOS 26.5, macOS Tahoe 26.5, and tvOS 26.5. The provided connected documents specify that an attacker on the local network could cause a denial-of-service, indicating...

Apple Security Update: tvOS 18.2.1

Apple recommends to install security update tvOS 18.2.1 on devices Apple TV HD and Apple TV 4K all models...

CVE-2023-31084

A potential deadlock flaw was found in the Linux’s kernel DVB API used by Digital TV devices functionality. This flaw allows a local user to crash the system...

部分Apple产品 安全漏洞

Apple Safari is a web browser from Apple Inc. and is the default browser that comes with the Mac OS X and iOS operating systems. A security vulnerability exists in some Apple products, which originates from a remote attacker who may be able to break into the web content sandbox. The following...

CVE-2018-16594

The Photo Sharing Plus component on Sony Bravia TV through 8.587 devices allows Directory Traversal...

CVE-2018-7539

On Appear TV XC5000 and XC5100 devices with firmware 3.26.217, it is possible to read OS files with a specially crafted HTTP request such as GET /../../../../../../../../../../../../etc/passwd to the web server fuzzd/0.1.1 running the Maintenance Center on port TCP/8088. This can lead to full...

LizardStresser IoT Botnets Part of 400Gbps DDoS Attacks

LizardStresser, a distributed denial of service botnet, has found new life leveraging hundreds of internet-based webcams in attacks against Brazilian-based banks, government agencies as well as a handful of U.S.-based gaming companies. Researchers at the Arbor’s Security Engineering and Response...