PT-2023-13988 · Tp Link · Tp-Link Tapo C200

Name of the Vulnerable Software and Affected Versions: TP-Link Tapo C200 version V1 Description: An access control issue allows physically proximate attackers to obtain root access by connecting to the UART pins, interrupting the boot process, and setting an init=/bin/sh value. Recommendations: F...

CVE-2022-41505

The CVE-2022-41505 entry concerns the TP-Link Tapo C200 V1 webcam, where an access-control flaw reportedly lets a physically proximate attacker obtain root access by connecting to UART pins, interrupting boot, and setting init=/bin/sh. Documents confirm physical access as the attack vector and th...

GSD-2023-1001399 serial: amba-pl011: avoid SBSA UART accessing DMACR register

serial: amba-pl011: avoid SBSA UART accessing DMACR register This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.163 by commit...

GSD-2023-1001084 serial: amba-pl011: avoid SBSA UART accessing DMACR register

serial: amba-pl011: avoid SBSA UART accessing DMACR register This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.86 by commit...

GSD-2023-1000672 serial: amba-pl011: avoid SBSA UART accessing DMACR register

serial: amba-pl011: avoid SBSA UART accessing DMACR register This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.16 by commit...

PT-2023-34161 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.86 Description: The issue concerns the serial: amba-pl011, where SBSA UART accessing DMACR register is avoided. This is an automated ID intended to aid in discovery of potential security vulnerabilities,...

PT-2023-33749 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.16 Description: The issue concerns the serial: amba-pl011, where SBSA UART accessing DMACR register is avoided. This is an automated ID intended to aid in discovery of potential security vulnerabilities. Th...

PT-2023-9436 · Linux +4 · Linux Kernel +4

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.1.0-rt5-00350-gb2450b7e00be-dirty 26 Description: The vulnerability is related to a slab-out-of-bounds issue in the handle rx uart function of the qcom-geni-serial driver. This occurs when the RX FIFO depth is...

PT-2025-37537

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A memory leak exists in the tty subsystem, specifically within the pcn uart driver, related to the use of the debugfs lookup function. Failing to call dput on the result of debugfs...

PT-2025-54133

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.1.1+g56321e101aca 1 Description The Linux kernel contains a flaw related to interrupt request handling in the tty serial driver for the imx platform. Specifically, pending USR interrupts may occur before the UA...

DEBIAN-CVE-2022-3114

An issue was discovered in the Linux kernel through 5.16-rc6. imxregisteruartclocks in drivers/clk/imx/clk.c lacks check of the return value of kcalloc and will cause the null pointer dereference...

UBUNTU-CVE-2022-3114

An issue was discovered in the Linux kernel through 5.16-rc6. imxregisteruartclocks in drivers/clk/imx/clk.c lacks check of the return value of kcalloc and will cause the null pointer dereference...

CVE-2022-43096

Mediatrix 4102 before v48.5.2718 allows local attackers to gain root access via the UART port...

CVE-2022-43096

Mediatrix 4102 before v48.5.2718 allows local attackers to gain root access via the UART port...

Code injection

Mediatrix 4102 before v48.5.2718 allows local attackers to gain root access via the UART port...

CVE-2022-43096

Mediatrix 4102 before v48.5.2718 allows local attackers to gain root access via the UART port...

CVE-2022-43096

Mediatrix 4102 before v48.5.2718 allows local attackers to gain root access via the UART port...

PT-2022-26749 · Media5 · Mediatrix 4102

Name of the Vulnerable Software and Affected Versions: Mediatrix 4102 versions prior to 48.5.2718 Description: The issue allows local attackers to gain root access via the UART port. Recommendations: For versions prior to 48.5.2718, update to version 48.5.2718 or later to resolve the issue...

CVE-2022-43096

CVE-2022-43096 concerns the Mediatrix 4102 VoIP adapter. According to the documents, versions prior to 48.5.2718 are vulnerable to a local attack that can grant root access via the UART port. The baseline CVSS–3.1 metrics indicate a physical attack vector, with low exploit complexity, no privileg...

Abode Systems, Inc. iota All-In-One Security Kit web interface /action/wirelessConnect format string injection vulnerabilities

Talos Vulnerability Report TALOS-2022-1585 Abode Systems, Inc. iota All-In-One Security Kit web interface /action/wirelessConnect format string injection vulnerabilities October 20, 2022 CVE Number CVE-2022-35885,CVE-2022-35886,CVE-2022-35884,CVE-2022-35887 SUMMARY Four format string injection...