CVE-2022-39176 Audio information can be found in the profile before 5.59 if the params_len check is not done.
CVE-2017-9079 BlueZ before 5.60 allows physically proximate attackers to obtain sensitive information via a crafted call because the dial command does not verify that
CVE-2022-36773 IBM Cognos Analytics is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources.
In certain configurations, IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 is vulnerable to a Denial of Service (DoS) attack.
CVE-2022-36614 Totolink A860R v4.1.2cu.5182_B20201027 had a hardcoded password for root at /etc/shadow.sample.
A hardcoded password, such as this one, is a very bad sign. It means that the device was probably developed by a third party. The
CVE-2022-21742 The Realtek USB driver has a buffer overflow vulnerability due to insufficient parameter length verification in the API function.
An authenticated user on the same network can exploit this vulnerability to execute arbitrary code on the system with root privileges.
CVE-2019-0516: An issue was
CVE-2022-31462 - Owning the Owl Labs Meeting Owl via Bluetooth Backdoor Password
In recent years, teleconferencing devices like the Owl Labs Meeting Owl have become the centerpiece of business meetings worldwide. They make meetings smoother, but sometimes,
Episode
00:00:00
00:00:00