Eclipse ThreadX USBX security vulnerabilities

Eclipse ThreadX USBX is an open-source version of Eclipse ThreadX, which includes a USB host, device, and mobile embedded stack. There is a security vulnerability in Eclipse ThreadX USBX, caused by the uxhostclassstoragemediamount function having unlimited recursive depth, which may lead to a sta...

Eclipse ThreadX USBX 缓冲区错误漏洞

Eclipse ThreadX USBX is an open source USB host, device and mobile embedded stack for Eclipse ThreadX. A buffer error vulnerability exists in Eclipse ThreadX USBX versions prior to 6.4.3, which stems from a potential out-of-bounds read issue when parsing a list of sampling frequencies...

Eclipse ThreadX USBX 缓冲区错误漏洞

Eclipse ThreadX USBX is an open source USB host, device and mobile embedded stack for Eclipse ThreadX. A buffer error vulnerability exists in Eclipse ThreadX USBX versions prior to 6.4.3 that stems from a potential out-of-bounds read when parsing an attacker-controlled frequency field descriptor...

EUVD-2022-33601

Malicious code in bioql PyPI...

EUVD-2022-38825

Malicious code in bioql PyPI...

EUVD-2023-52741

Malicious code in bioql PyPI...

EUVD-2023-52742

Malicious code in bioql PyPI...

EUVD-2023-52739

Malicious code in bioql PyPI...

EUVD-2023-52738

Malicious code in bioql PyPI...

EUVD-2022-33585

Malicious code in bioql PyPI...

EUVD-2022-41790

Malicious code in bioql PyPI...

CVE-2023-48698

Azure RTOS USBX is a USB host, device, and on-the-go OTG embedded stack, that is fully integrated with Azure RTOS ThreadX. An attacker can cause remote code execution due to expired pointer dereference vulnerabilities in Azure RTOS USBX. The affected components include functions/processes in host...

CVE-2023-48695

Azure RTOS USBX is a USB host, device, and on-the-go OTG embedded stack, that is fully integrated with Azure RTOS ThreadX. An attacker can cause remote code execution due to out of bounds write vulnerabilities in Azure RTOS USBX. The affected components include functions/processes in host and...

CVE-2022-29246

Azure RTOS USBX is a USB host, device, and on-the-go OTG embedded stack. Prior to version 6.1.11, he USBX DFU UPLOAD functionality may be utilized to introduce a buffer overflow resulting in overwrite of memory contents. In particular cases this may allow an attacker to bypass security features o...

CVE-2022-29223

Azure RTOS USBX is a USB host, device, and on-the-go OTG embedded stack. In versions prior to 6.1.10, an attacker can cause a buffer overflow by providing the Azure RTOS USBX host stack a HUB descriptor with bNbPorts set to a value greater than UXMAXTT which defaults to 8. For a bNbPorts value of...

CVE-2022-36063

Azure RTOS USBx is a USB host, device, and on-the-go OTG embedded stack, fully integrated with Azure RTOS ThreadX and available for all Azure RTOS ThreadX–supported processors. Azure RTOS USBX implementation of host support for USB CDC ECM includes an integer underflow and a buffer overflow in th...

CVE-2022-39344

Azure RTOS USBX is a USB host, device, and on-the-go OTG embedded stack, that is fully integrated with Azure RTOS ThreadX. Prior to version 6.1.12, the USB DFU UPLOAD functionality may be utilized to introduce a buffer overflow resulting in overwrite of memory contents. In particular cases this m...

CVE-2022-39293

Azure RTOS USBX is a high-performance USB host, device, and on-the-go OTG embedded stack, that is fully integrated with Azure RTOS ThreadX. The case is, in uxhostclasspimaread, there is data length from device response, returned in the very first packet, and read by L165 code, as headerlength. Th...

CVE-2023-48698

Azure RTOS USBX is a USB host, device, and on-the-go OTG embedded stack, that is fully integrated with Azure RTOS ThreadX. An attacker can cause remote code execution due to expired pointer dereference vulnerabilities in Azure RTOS USBX. The affected components include functions/processes in host...

CVE-2023-48697

Azure RTOS USBX is a USB host, device, and on-the-go OTG embedded stack, that is fully integrated with Azure RTOS ThreadX. An attacker can cause remote code execution due to memory buffer and pointer vulnerabilities in Azure RTOS USBX. The affected components include functions/processes in...