13 matches found
EUVD-2023-56169
Malicious code in bioql PyPI...
EUVD-2023-56167
Malicious code in bioql PyPI...
CVE-2023-51456
A Improper Input Validation issue affecting the v2sdkservice running on a set of DJI drone devices on the port 10000 could allow an attacker to trigger an out-of-bound read/write into the process memory through a crafted payload due to a missing input sanity check in the v2packarraytomsg function...
CVE-2023-51454
A Out-of-bounds Write issue affecting the v2sdkservice running on a set of DJI drone devices on the port 10000 could allow an attacker to overwrite a pointer in the process memory through a crafted payload triggering an unsafe memory write operation in the mytcpreceive function implemented in the...
CVE-2023-51452
A Improper Input Validation issue affecting the v2sdkservice running on a set of DJI drone devices on the port 10000 could allow an attacker to cause a crash of the service through a crafted payload triggering a missing input size check in the pullfilev2proc function implemented in the libv2sdk.s...
CVE-2023-51456
A Improper Input Validation issue affecting the v2sdkservice running on a set of DJI drone devices on the port 10000 could allow an attacker to trigger an out-of-bound read/write into the process memory through a crafted payload due to a missing input sanity check in the v2packarraytomsg function...
CVE-2023-51456
A Improper Input Validation issue affecting the v2sdkservice running on a set of DJI drone devices on the port 10000 could allow an attacker to trigger an out-of-bound read/write into the process memory through a crafted payload due to a missing input sanity check in the v2packarraytomsg function...
CVE-2023-51455
CVE-2023-51455 concerns an Improper Validation of Array Index in the v2_sdk_service on DJI devices, specifically in the on_receive_session_packet_ack function of libv2_sdk.so used by the dji_vtwo_sdk service and exposed on port 10000. Affected devices/versions include Mavic 3 Pro < v01.01.0300...
CVE-2023-51454
A Out-of-bounds Write issue affecting the v2sdkservice running on a set of DJI drone devices on the port 10000 could allow an attacker to overwrite a pointer in the process memory through a crafted payload triggering an unsafe memory write operation in the mytcpreceive function implemented in the...
CVE-2023-51454
A Out-of-bounds Write issue affecting the v2sdkservice running on a set of DJI drone devices on the port 10000 could allow an attacker to overwrite a pointer in the process memory through a crafted payload triggering an unsafe memory write operation in the mytcpreceive function implemented in the...
CVE-2023-51454
The CVE-2023-51454 entry is supported by concrete details across connected sources: an out-of-bounds write in the v2_sdk_service listening on port 10000 of several DJI devices, caused by an unsafe memory write in my_tcp_receive in libv2_sdk.so. Affected are Mavic 3 Pro (< v01.01.0300), Mavic 3...
CVE-2023-51453
CVE-2023-51453 : The vulnerability is an improper input validation in the v2_sdk_service used by DJI drone devices (ports 10000) that can crash the service via a crafted payload due to a missing input size check in the process_push_file function of the libv2_sdk.so library. Affected models and ve...
CVE-2023-51452
The CVE-2023-51452 issue is an Improper Input Validation in DJI’s v2_sdk_service (listening on port 10000) that can crash the service via a crafted payload due to a missing input size check in the pull_file_v2_proc function within libv2_sdk.so used by dji_vtwo_sdk. Affected DJI devices and firmwa...