TinyOS 缓冲区错误漏洞

TinyOS is an operating system in the TinyOS open source. A buffer error vulnerability exists in TinyOS 2.1.2 and prior versions, which stems from a global buffer overflow in the printfUART formatted output implementation in the ZigBee/IEEE 802.15.4 network stack, which could lead to a denial of...

EUVD-2019-6819

Malware in sbrugna...

EUVD-2024-31651

Malicious code in bioql PyPI...

CVE-2019-15910

An issue was discovered on ASUS HG100, MW100, WS-101, TS-101, AS-101, MS-101, DL-101 devices using ZigBee PRO. Attackers can utilize the "discover ZigBee network procedure" to perform a denial of service attack...

CVE-2019-15915

An issue was discovered on Xiaomi DGNWG03LM, ZNCZ03LM, MCCGQ01LM, RTCGQ01LM devices. Attackers can utilize the "discover ZigBee network procedure" to perform a denial of service attack...

CVE-2024-3043

An unauthenticated IEEE 802.15.4 'co-ordinator realignment' packet can be used to force Zigbee nodes to change their network identifier pan ID, leading to a denial of service. This packet type is not useful in production and should be used only for PHY qualification...

PT-2023-27780 · Ember · Ember Znet

Name of the Vulnerable Software and Affected Versions: Ember ZNet versions 7.1.3 through 7.1.5 Ember ZNet versions 7.2.0 through 7.2.3 Description: The issue is related to TouchLink packets being processed after a timeout or out of range due to Operation on a Resource after Expiration and Missing...

Ksix Zigbee Devices Playback Protection Bypass

Exploit Title: Ksix Zigbee Devices - Playback Protection Bypass PoC Date: 2020-11-15 Exploit Author: Alejandro Vazquez Vazquez Vendor Homepage: https://www.ksixmobile.com/ Firmware Version: Gateway Zigbee Module - v1.0.3, Gateway Main Module - v1.1.2, Door Sensor - v1.0.7, PIR Motion Sensor -...