openthread/cli-uart-received-fuzzer: Index-out-of-bounds in ot::Cli::Uart::ReceiveTask

Project: https://github.com/openthread/openthread.git Detailed report: https://oss-fuzz.com/testcase?key=5730276330700800 Project: openthread Fuzzer: libFuzzeropenthreadcli-uart-received-fuzzer Fuzz target binary: cli-uart-received-fuzzer Job Type: libfuzzerubsanopenthread Platform Id: linux Cras...

Code injection

The ASPEED ast2400 and ast2500 Baseband Management Controller BMC hardware and firmware implement Advanced High-performance Bus AHB bridges, which allow arbitrary read and write access to the BMC's physical address space from the host or from the network in unusual cases where the BMC console uar...

CVE-2019-6260

The ASPEED ast2400 and ast2500 Baseband Management Controller BMC hardware and firmware implement Advanced High-performance Bus AHB bridges, which allow arbitrary read and write access to the BMC's physical address space from the host or from the network in unusual cases where the BMC console uar...

openthread/ncp-uart-received-fuzzer: Stack-buffer-overflow in ot::NetworkData::PrefixTlv::Init

Project: https://github.com/openthread/openthread.git Detailed report: https://oss-fuzz.com/testcase?key=5139750002884608 Project: openthread Fuzzer: aflopenthreadncp-uart-received-fuzzer Fuzz target binary: ncp-uart-received-fuzzer Job Type: aflasanopenthread Platform Id: linux Crash Type:...

CVE-2018-20342

The Floureon IP Camera SP012 provides a root terminal on a UART serial interface without proper access control. This allows attackers with physical access to execute arbitrary commands with root privileges...

Teltonika RUT9XX Missing Access Control To UART Root Terminal

Teltonika RUT9XX Missing Access Control to UART Root Terminal Link: https://github.com/sbaresearch/advisories/tree/public/2018/SBA-ADV-20180319-02TeltonikaIncorrectAccessControl Vulnerability Overview Teltonika RUT9XX routers with firmware before 00.04.233 provide a root terminal on a serial...

Teltonika RUT9XX Missing Access Control To UART Root Terminal Vulnerability

Exploit for cgi platform in category web applications Teltonika RUT9XX Missing Access Control to UART Root Terminal Link: https://github.com/sbaresearch/advisories/tree/public/2018/SBA-ADV-20180319-02TeltonikaIncorrectAccessControl Vulnerability Overview Teltonika RUT9XX routers with firmware...

CVE-2018-12259

An issue was discovered on Momentum Axel 720P 5.1.8 devices. Root access can be obtained via UART pins without any restrictions, which leads to full system compromise...

Code injection

An issue was discovered on Momentum Axel 720P 5.1.8 devices. Root access can be obtained via UART pins without any restrictions, which leads to full system compromise...

CVE-2018-12259

An issue was discovered on Momentum Axel 720P 5.1.8 devices. Root access can be obtained via UART pins without any restrictions, which leads to full system compromise...

CVE-2018-12259

An issue was discovered on Momentum Axel 720P 5.1.8 devices. Root access can be obtained via UART pins without any restrictions, which leads to full system compromise...

The vulnerability of the microprogramming software of the Zyxel Multy X AC3000 lies in the lack of protection for the UART interface, which allows a hacker to gain access to the device with root privileges.

The vulnerability of the Zyxel Multy X AC3000 router’s microprogramming software lies in the lack of protection for the UART interface and the use of pre-installed credentials. Exploiting this vulnerability allows a malicious actor to gain access to the device with root privileges via the...

Rooting a Logitech Harmony Hub: Improving Security in Today's IoT World

Introduction FireEye’s Mandiant Red Team recently discovered vulnerabilities present on the Logitech Harmony Hub Internet of Things IoT device that could potentially be exploited, resulting in root access to the device via SSH. The Harmony Hub is a home control system designed to connect to and...

CVE-2018-9149

The Zyxel Multy X AC3000 Tri-Band WiFi System device doesn't use a suitable mechanism to protect the UART. After an attacker dismantles the device and uses a USB-to-UART cable to connect the device, he can use the 1234 password for the root account to login to the system. Furthermore, an attacker...

CVE-2018-9149

The Zyxel Multy X AC3000 Tri-Band WiFi System device doesn't use a suitable mechanism to protect the UART. After an attacker dismantles the device and uses a USB-to-UART cable to connect the device, he can use the 1234 password for the root account to login to the system. Furthermore, an attacker...

Default credentials

The Zyxel Multy X AC3000 Tri-Band WiFi System device doesn't use a suitable mechanism to protect the UART. After an attacker dismantles the device and uses a USB-to-UART cable to connect the device, he can use the 1234 password for the root account to login to the system. Furthermore, an attacker...

CVE-2018-9149

The Zyxel Multy X AC3000 Tri-Band WiFi System device doesn't use a suitable mechanism to protect the UART. After an attacker dismantles the device and uses a USB-to-UART cable to connect the device, he can use the 1234 password for the root account to login to the system. Furthermore, an attacker...

CVE-2018-9149

The CVE-2018-9149 entry concerns Zyxel Multy X (AC3000 Tri-Band WiFi System). The vulnerability arises from an inadequate protection mechanism for the UART, enabling an attacker who physically accesses the device (after dismantling) to connect via USB-UART and log in with the root password 1234. ...

CVE-2018-6311

One can gain root access on the Foxconn femtocell FEMTO AP-FC4064-T version APGTB385.8.3lb15-W47 LTE Build 15 via UART pins without any restrictions, which leads to full system compromise and disclosure of user communications...

Design/Logic Flaw

One can gain root access on the Foxconn femtocell FEMTO AP-FC4064-T version APGTB385.8.3lb15-W47 LTE Build 15 via UART pins without any restrictions, which leads to full system compromise and disclosure of user communications...