14 matches found
ThreatsDay Bulletin: Pre-Auth Chains, Android Rootkits, CloudTrail Evasion & 10 More Stories
The latest ThreatsDay Bulletin is basically a cheat sheet for everything breaking on the internet right now. No corporate fluff or boring lectures here, just a quick and honest look at the messy reality of keeping systems safe this week. Things are moving fast. The list includes researchers...
CVE-2025-0658
A vulnerability in Automated Logic and Carrier's Zone Controller via BACnet protocol causes the device to crash. The device enters a fault state; after a reset, a second packet can leave it permanently unresponsive until a manual power cycle is performed...
CVE-2025-0658
A vulnerability in Automated Logic and Carrier's Zone Controller via BACnet protocol causes the device to crash. The device enters a fault state; after a reset, a second packet can leave it permanently unresponsive until a manual power cycle is performed...
PT-2025-48214
A vulnerability in Automated Logic and Carrier's Zone Controller via BACnet protocol causes the device to crash. The device enters a fault state; after a reset, a second packet can leave it permanently unresponsive until a manual power cycle is performed...
CVE-2022-28750
Zoom On-Premise Meeting Connector Zone Controller ZC before version 4.8.20220419.112 fails to properly parse STUN error codes, which can result in memory corruption and could allow a malicious actor to crash the application. In versions older than 4.8.12.20211115, this vulnerability could also be...
CVE-2022-28750
Zoom On-Premise Meeting Connector Zone Controller ZC before version 4.8.20220419.112 fails to properly parse STUN error codes, which can result in memory corruption and could allow a malicious actor to crash the application. In versions older than 4.8.12.20211115, this vulnerability could also be...
CVE-2022-28750 Zoom On-Premise Deployments: Stack Buffer Overflow in Meeting Connector
Zoom On-Premise Meeting Connector Zone Controller ZC before version 4.8.20220419.112 fails to properly parse STUN error codes, which can result in memory corruption and could allow a malicious actor to crash the application. In versions older than 4.8.12.20211115, this vulnerability could also be...
Zoom on-premise Meeting Connector 缓冲区错误漏洞
Zoom On-Premise Meeting Connector is a meeting connector from Zoom USA. A security vulnerability exists in Zoom On-Premise Meeting Connector Zone Controller versions prior to 4.8.20220419.112, which stems from an inability to correctly parse a STUN error code, resulting in memory corruption...
CVE-2022-28750
Zoom On-Premise Meeting Connector Zone Controller ZC before version 4.8.20220419.112 fails to properly parse STUN error codes, which can result in memory corruption and could allow a malicious actor to crash the application. In versions older than 4.8.12.20211115, this vulnerability could also be...
PT-2021-16690 · Hdcp Ldfw · Hdcp Ldfw
Name of the Vulnerable Software and Affected Versions: HDCP LDFW versions prior to SMR Nov-2021 Release 1 Description: A missing input validation in HDCP LDFW allows attackers to overwrite TZASC, which can lead to TEE compromise. Recommendations: For versions prior to SMR Nov-2021 Release 1, upda...
CVE-2021-34415
The Zone Controller service in the Zoom On-Premise Meeting Connector Controller before version 4.6.358.20210205 does not verify the cnt field sent in incoming network packets, which leads to exhaustion of resources and system crash...
Code injection
The Zone Controller service in the Zoom On-Premise Meeting Connector Controller before version 4.6.358.20210205 does not verify the cnt field sent in incoming network packets, which leads to exhaustion of resources and system crash...
CVE-2021-34415
The Zone Controller service in the Zoom On-Premise Meeting Connector Controller before version 4.6.358.20210205 does not verify the cnt field sent in incoming network packets, which leads to exhaustion of resources and system crash...
ZOOM on-premise Meeting Connector 输入验证错误漏洞
ZOOM on-premise Meeting Connector is a meeting connector from Zoom ZOOM USA. A security vulnerability exists in versions prior to ZOOM On-Premise Meeting Connector Controller 4.6.358.20210205, which stems from the zone controller service failing to validate the cnt field sent in incoming network...