CVE-2022-50976

A local attacker could cause a full device reset by resetting the device passwords using an invalid reset file via USB...

CVE-2025-21073

Insecure default configuration in USB connection mode prior to SMR Nov-2025 Release 1 allows privileged physical attackers to access user data. User interaction is required for triggering this vulnerability...

CVE-2025-21073

CVE-2025-21073 describes an insecure default configuration in USB connection mode before Samsung SMR Nov-2025 Release 1. This allows a privileged physical attacker to access user data on affected devices. Exploitation requires physical access and user interaction. Impact is data confidentiality l...

EUVD-2017-18746

Malware in sbrugna...

EUVD-2014-2424

Malware in sbrugna...

EUVD-2019-5574

Malware in sbrugna...

EUVD-2019-5576

Malware in sbrugna...

EUVD-2017-18745

Malware in sbrugna...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987012)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987012 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: common: usb-conn-gpio: fix NULL pointer dereference of charger When power on system with OTG...

CVE-2018-21046

An issue was discovered on Samsung mobile devices with O8.x software. There is clipboard Data Exposure via the Emergency Dialer upon connecting a USB device. The Samsung ID is SVE-2018-12911 November 2018...

CVE-2019-14356

On Coldcard MK1 and MK2 devices, a side channel for the row-based OLED display was found. The power consumption of each row-based display cycle depends on the number of illuminated pixels, allowing a partial recovery of display contents. For example, a hardware implant in the USB cable might be...

CVE-2019-14358

On Archos Safe-T devices, a side channel for the row-based OLED display was found. The power consumption of each row-based display cycle depends on the number of illuminated pixels, allowing a partial recovery of display contents. For example, a hardware implant in the USB cable might be able to...

CVE-2019-14355

On ShapeShift KeepKey devices, a side channel for the row-based OLED display was found. The power consumption of each row-based display cycle depends on the number of illuminated pixels, allowing a partial recovery of display contents. For example, a hardware implant in the USB cable might be abl...

CVE-2019-14359

On BC Vault devices, a side channel for the row-based SSD1309 OLED display was found. The power consumption of each row-based display cycle depends on the number of illuminated pixels, allowing a partial recovery of display contents. For example, a hardware implant in the USB cable might be able ...

CVE-2019-14357

On Mooltipass Mini devices, a side channel for the row-based OLED display was found. The power consumption of each row-based display cycle depends on the number of illuminated pixels, allowing a partial recovery of display contents. For example, a hardware implant in the USB cable might be able t...

CVE-2019-14360

On Hyundai Pay Kasse HK-1000 devices, a side channel for the row-based OLED display was found. The power consumption of each row-based display cycle depends on the number of illuminated pixels, allowing a partial recovery of display contents. For example, a hardware implant in the USB cable might...

CVE-2021-35033

A vulnerability in specific versions of Zyxel NBG6818, NBG7815, WSQ20, WSQ50, WSQ60, and WSR30 firmware with pre-configured password management could allow an attacker to obtain root access of the device, if the local attacker dismantles the device and uses a USB-to-UART cable to connect the...

Alcatel smartphone security breach

The Motorola smartphone is a smartphone from Motorola, USA. A security vulnerability exists in the Motorola smartphone, which originates from the fact that when the device is connected to a host PC via USB and connected to a mobile network, the device's modem may reset when a user initiates a pho...

Fake Trezor app steals more than $1 million worth of crypto coins

Several users of Trezor, a small hardware device that acts as a cryptocurrency wallet, have been duped by a fake app with the same name. The app was available on Google Play and Apple’s App Store and also claimed to be from SatoshiLabs, the creators of Trezor. According to the Washington Post, th...

Design/Logic Flaw

An issue was discovered on Samsung mobile devices with O8.x software. There is clipboard Data Exposure via the Emergency Dialer upon connecting a USB device. The Samsung ID is SVE-2018-12911 November 2018...