Lucene search
K

785 matches found

Cvelist
Cvelist
added 2024/08/15 12:0 a.m.28 views

CVE-2024-31799

Information Disclosure in GNCC's GC2 Indoor Security Camera 1080P allows an attacker with physical access to read the WiFi passphrase via the UART Debugging Port...

0.00256EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/08/15 12:0 a.m.21 views

CVE-2024-31800

Authentication Bypass in GNCC's GC2 Indoor Security Camera 1080P allows an attacker with physical access to gain a privileged command shell via the UART Debugging Port...

0.00399EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2024/06/24 11:15 p.m.3 views

SUSE CVE-2024-38634

In the Linux kernel, the following vulnerability has been resolved: serial: max3100: Lock port-lock when calling uarthandlectschange uarthandlectschange has to be called with port lock taken, Since we run it in a separate work, the lock may not be taken at the time of running. Make sure that it's...

5.5CVSS6AI score0.00189EPSS
Exploits0References13
RedhatCVE
RedhatCVE
added 2024/06/21 7:53 p.m.39 views

CVE-2024-38633

A vulnerability was found in the Linux kernel, affecting the max3100 serial driver. This issue involves improper handling of the uartdriverregistered state upon driver removal, which could lead to use-after-free conditions or undefined behavior. This flaw might allow attackers to exploit the driv...

5.5CVSS7.1AI score0.00243EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2024/06/21 7:53 p.m.19 views

CVE-2024-38634

In the Linux kernel, the following vulnerability has been resolved: serial: max3100: Lock port-lock when calling uarthandlectschange uarthandlectschange has to be called with port lock taken, Since we run it in a separate work, the lock may not be taken at the time of running. Make sure that it's...

4.4CVSS6.9AI score0.00189EPSS
Exploits0References4
NVD
NVD
added 2024/06/21 11:15 a.m.22 views

CVE-2024-38633

In the Linux kernel, the following vulnerability has been resolved: serial: max3100: Update uartdriverregistered on driver removal The removal of the last MAX3100 device triggers the removal of the driver. However, code doesn't update the respective global variable and after insmod — rmmod — insm...

5.5CVSS0.00243EPSS
Exploits0References9
OSV
OSV
added 2024/06/21 11:15 a.m.1 views

DEBIAN-CVE-2024-38633

In the Linux kernel, the following vulnerability has been resolved: serial: max3100: Update uartdriverregistered on driver removal The removal of the last MAX3100 device triggers the removal of the driver. However, code doesn't update the respective global variable and after insmod — rmmod — insm...

5.5CVSS5.8AI score0.00243EPSS
Exploits0References1
OSV
OSV
added 2024/06/21 11:15 a.m.1 views

DEBIAN-CVE-2024-38634

In the Linux kernel, the following vulnerability has been resolved: serial: max3100: Lock port-lock when calling uarthandlectschange uarthandlectschange has to be called with port lock taken, Since we run it in a separate work, the lock may not be taken at the time of running. Make sure that it's...

5.5CVSS5.8AI score0.00189EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/21 10:18 a.m.35 views

CVE-2024-38634 serial: max3100: Lock port->lock when calling uart_handle_cts_change()

In the Linux kernel, the following vulnerability has been resolved: serial: max3100: Lock port-lock when calling uarthandlectschange uarthandlectschange has to be called with port lock taken, Since we run it in a separate work, the lock may not be taken at the time of running. Make sure that it's...

0.00189EPSS
Exploits0References8
OSV
OSV
added 2024/06/21 10:18 a.m.16 views

CVE-2024-38633 serial: max3100: Update uart_driver_registered on driver removal

In the Linux kernel, the following vulnerability has been resolved: serial: max3100: Update uartdriverregistered on driver removal The removal of the last MAX3100 device triggers the removal of the driver. However, code doesn't update the respective global variable and after insmod — rmmod — insm...

5.5CVSS6.2AI score0.00243EPSS
Exploits0References12
Vulnrichment
Vulnrichment
added 2024/06/21 10:18 a.m.19 views

CVE-2024-38633 serial: max3100: Update uart_driver_registered on driver removal

In the Linux kernel, the following vulnerability has been resolved: serial: max3100: Update uartdriverregistered on driver removal The removal of the last MAX3100 device triggers the removal of the driver. However, code doesn't update the respective global variable and after insmod — rmmod — insm...

7AI score0.00243EPSS
Exploits0References8
CNNVD
CNNVD
added 2024/06/21 12:0 a.m.2 views

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the serial:max3100 module not updating uartdriverregistered on driver removal...

5.5CVSS6.5AI score0.00243EPSS
Exploits0References10
CNNVD
CNNVD
added 2024/06/21 12:0 a.m.3 views

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that originates from the serial:max3100 module locking port-lock when calling uarthandlectschange...

5.5CVSS6.5AI score0.00189EPSS
Exploits0References10
Vulnrichment
Vulnrichment
added 2024/06/14 12:0 a.m.12 views

CVE-2024-33374

Incorrect access control in the UART/Serial interface on the LB-LINK BL-W1210M v2.0 router allows attackers to access the root terminal without authentication...

6.9AI score0.00539EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/06/14 12:0 a.m.23 views

CVE-2024-33374

Incorrect access control in the UART/Serial interface on the LB-LINK BL-W1210M v2.0 router allows attackers to access the root terminal without authentication...

0.00539EPSS
Exploits0References2
CVE
CVE
added 2024/06/14 12:0 a.m.44 views

CVE-2024-33374

CVE-2024-33374 affects the LB-LINK BL-W1210M v2.0 router. The issue is an incorrect access control in the UART/Serial interface that allows attackers to reach the root terminal without authentication. The CVSS base score is 9.8 (CRITICAL) with NETWORK attack vector, low complexity, no privileges ...

9.8CVSS7.2AI score0.00539EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2024/05/23 3:4 a.m.3 views

SUSE CVE-2021-47358

In the Linux kernel, the following vulnerability has been resolved: staging: greybus: uart: fix tty use after free User space can hold a tty open indefinitely and tty drivers must not release the underlying structures until the last user is gone. Switch to using the tty-port reference counter to...

6.7CVSS6.3AI score0.00242EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2024/05/22 11:4 a.m.18 views

CVE-2021-47358

A use-after-free flaw was in the Linux kernel’s Greybus UART driver when a user held a tty open. This flaw allows a local user to crash the system. Mitigation Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria...

4.7CVSS8.8AI score0.00242EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/05/22 10:16 a.m.4 views

kernel: race condition between HCIUARTSETPROTO and HCIUARTGETPROTO in hci_uart_tty_ioctl

A NULL pointer dereference flaw was found in the Linux kernel’s Bluetooth HCI UART driver. This flaw allows a local user to crash the system...

4.7CVSS6.8AI score0.00325EPSS
Exploits0References5
OSV
OSV
added 2024/05/21 3:15 p.m.1 views

DEBIAN-CVE-2021-47358

In the Linux kernel, the following vulnerability has been resolved: staging: greybus: uart: fix tty use after free User space can hold a tty open indefinitely and tty drivers must not release the underlying structures until the last user is gone. Switch to using the tty-port reference counter to...

7.8CVSS5.6AI score0.00242EPSS
Exploits0References1
Rows per page
Query Builder