Lucene search
+L

40 matches found

Cvelist
Cvelist
added 2019/06/29 7:7 p.m.23 views

CVE-2019-13055

Certain Logitech Unifying devices allow attackers to dump AES keys and addresses, leading to the capability of live decryption of Radio Frequency transmissions, as demonstrated by an attack against a Logitech K360 keyboard...

6.5AI score0.01033EPSS
Exploits1References1
CVE
CVE
added 2019/06/29 7:6 p.m.83 views

CVE-2019-13053

CVE-2019-13053 describes a keystroke injection vulnerability in Logitech Unifying devices. The issue allows an attacker to inject keystrokes and bypass encryption by pressing a specific “magic” key combination while listening to the RF transmission. The vulnerability is noted as a consequence of ...

6.5CVSS6.6AI score0.00544EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/06/29 7:6 p.m.33 views

CVE-2019-13053

Logitech Unifying devices allow keystroke injection, bypassing encryption. The attacker must press a "magic" key combination while sniffing cryptographic data from a Radio Frequency transmission. NOTE: this issue exists because of an incomplete fix for CVE-2016-10761...

6.6AI score0.00544EPSS
Exploits1References1
CVE
CVE
added 2019/06/29 7:6 p.m.86 views

CVE-2016-10761

CVE-2016-10761 affects Logitech Unifying devices prior to 2016-02-26, enabling keystroke injection and bypassing encryption (MouseJack). The NVD entry lists low to medium severity (CVSS v2 base 3.3, CVSS v3 base 6.5) with adjacent, low-complexity exploitation and no user interaction required. Pub...

6.5CVSS6.5AI score0.00745EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/06/29 7:6 p.m.34 views

CVE-2016-10761

Logitech Unifying devices before 2016-02-26 allow keystroke injection, bypassing encryption, aka MouseJack...

6.5AI score0.00745EPSS
Exploits0References2
CVE
CVE
added 2019/06/29 7:5 p.m.75 views

CVE-2019-13052

CVE-2019-13052 concerns Logitech Unifying devices where, if the pairing between a keyboard and its receiver is sniffed, an attacker could achieve live decryption of the communication. The core details across connected records identify the affected class as Logitech Unifying devices and describe a...

6.5CVSS6.5AI score0.00673EPSS
Exploits1References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/05/13 12:0 a.m.31 views

EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1480)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the way the Linux kernel's futex subsystem handled the requeuing of certain Priority Inheritance PI futexes. ...

7.8CVSS7.3AI score0.37233EPSS
Exploits28References22
Carbon Black Blog
Carbon Black Blog
added 2018/09/25 1:0 p.m.55 views

Partner Perspectives: Siemplify & Carbon Black Create Competitive Solution for MSSPs

Meny Har is the VP of Product for Siemplify. Advanced threats and an ever-evolving competitive landscape have created an increased demand for managed security services. Organizations of all sizes are turning to managed security services providers MSSPs to help them to effectively manage their...

Exploits0
Kitploit
Kitploit
added 2017/04/03 1:23 p.m.31 views

nRF24 Playset - Software tools for Nordic Semiconductor nRF24-based Devices like Wireless Keyboards, Mice, and Presenters

The nRF24 Playset is a collection of software tools for wireless input devices like keyboards, mice, and presenters based on Nordic Semiconductor nRF24 transceivers, e.g. nRF24LE1 and nRF24LU1+. All software tools support USB dongles with the nrf-research-firmware by the Bastille Threat...

7.8AI score
Exploits0References2
Kitploit
Kitploit
added 2017/03/30 2:35 p.m.27 views

Radio Hack Box - Tool to Demonstrate Vulnerabilities in Wireless Input Devices

The SySS Radio Hack Box is a proof-of-concept software tool to demonstrate the replay and keystroke injection vulnerabilities of the wireless keyboard Cherry B.Unlimited AES. Requirements Raspberry Pi Raspberry Pi Radio Hack Box shield a LCD, some LEDs, and some buttons nRF24LU1+ USB radio dongle...

7.7AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/02/23 12:0 a.m.157 views

Logitech Unifying Receiver Key Injection (MouseJack)

The remote Windows host has used a Logitech Unifying Receiver wireless USB device with firmware version 12.01 or 12.03. It is potentially affected by a wireless key injection vulnerability that allows a physically local attacker to send keystrokes to the host. Note that Nessus cannot determine wh...

5.5AI score
Exploits0References2
RedHat Linux
RedHat Linux
added 2014/12/09 8:33 p.m.7 views

Kernel: HID: logitech-dj OOB array access

An out-of-bounds read flaw was found in the way the Logitech Unifying receiver driver handled HID reports with an invalid deviceindex value. An attacker with physical access to the system could use this flaw to crash the system or, potentially, escalate their privileges on the system...

6.9CVSS6.7AI score0.00428EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2014/10/31 12:0 a.m.34 views

Ubuntu: Security Advisory (USN-2394-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.9AI score0.03725EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2014/10/31 12:0 a.m.99 views

Ubuntu 14.04 LTS : Linux kernel vulnerabilities (USN-2395-1)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-2395-1 advisory. Nadav Amit reported that the KVM Kernel Virtual Machine mishandles noncanonical addresses when emulating instructions that change the rip Instruction...

7.8CVSS7.3AI score0.03725EPSS
Exploits1References7
OSV
OSV
added 2014/10/30 7:39 p.m.3 views

USN-2395-1 linux vulnerabilities

Nadav Amit reported that the KVM Kernel Virtual Machine mishandles noncanonical addresses when emulating instructions that change the rip Instruction Pointer. A guest user with access to I/O or the MMIO can use this flaw to cause a denial of service system crash of the guest. CVE-2014-3647 A flaw...

7.8CVSS6.8AI score0.03725EPSS
Exploits1References7
Ubuntu
Ubuntu
added 2014/10/30 7:39 p.m.61 views

USN-2395-1: Linux kernel vulnerabilities

Nadav Amit reported that the KVM Kernel Virtual Machine mishandles noncanonical addresses when emulating instructions that change the rip Instruction Pointer. A guest user with access to I/O or the MMIO can use this flaw to cause a denial of service system crash of the guest. CVE-2014-3647 A flaw...

7.8CVSS6.7AI score0.03725EPSS
Exploits1
Ubuntu
Ubuntu
added 2014/10/30 7:37 p.m.80 views

USN-2394-1: Linux kernel (Trusty HWE) vulnerabilities

Nadav Amit reported that the KVM Kernel Virtual Machine mishandles noncanonical addresses when emulating instructions that change the rip Instruction Pointer. A guest user with access to I/O or the MMIO can use this flaw to cause a denial of service system crash of the guest. CVE-2014-3647 A flaw...

7.8CVSS6.7AI score0.03725EPSS
Exploits1
OpenVAS
OpenVAS
added 2014/10/10 12:0 a.m.42 views

Ubuntu: Security Advisory (USN-2377-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7AI score0.06167EPSS
Exploits4References2
Ubuntu
Ubuntu
added 2014/10/09 10:51 a.m.95 views

USN-2377-1: Linux kernel (OMAP4) vulnerabilities

Steven Vittitoe reported multiple stack buffer overflows in Linux kernel's magicmouse HID driver. A physically proximate attacker could exploit this flaw to cause a denial of service system crash or possibly execute arbitrary code via specially crafted devices. CVE-2014-3181 A bounds check error...

7.8CVSS7.1AI score0.06167EPSS
Exploits4
RedHat Linux
RedHat Linux
added 2014/09/29 7:41 p.m.5 views

Kernel: HID: logitech-dj OOB array access

An out-of-bounds read flaw was found in the way the Logitech Unifying receiver driver handled HID reports with an invalid deviceindex value. An attacker with physical access to the system could use this flaw to crash the system or, potentially, escalate their privileges on the system...

6.9CVSS6.7AI score0.00428EPSS
Exploits0References4
Rows per page
Query Builder