Categoria: CVE

CVE-2024-23958 | Autel MaxiCharger AC Elite Business C50 BLE hard-coded credentials

A vulnerability was found in Autel MaxiCharger AC Elite Business C50. It has been rated as critical. This issue affects some unknown processing of the component BLE. The manipulation leads to hard-coded credentials. The identification of this vulnerability is CVE-2024-23958. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected...

Per saperne di più

CVE-2024-24737 | Silicon Labs Gecko OS DNS Response denial of service

A vulnerability was found in Silicon Labs Gecko OS. It has been declared as problematic. This vulnerability affects unknown code of the component DNS Response Handler. The manipulation leads to denial of service. This vulnerability was named CVE-2024-24737. An attack has to be approached locally. There is no exploit available. It is recommended to upgrade the affected...

Per saperne di più

CVE-2024-23962 | Alpine Halo9 missing authentication

A vulnerability was found in Alpine Halo9. It has been classified as critical. This affects an unknown part. The manipulation leads to missing authentication. This vulnerability is uniquely identified as CVE-2024-23962. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to replace the affected component with an...

Per saperne di più

CVE-2024-23960 | Alpine Halo9 signature verification

A vulnerability was found in Alpine Halo9 and classified as problematic. Affected by this issue is some unknown functionality. The manipulation leads to improper verification of cryptographic signature. This vulnerability is handled as CVE-2024-23960. It is possible to launch the attack on the physical device. There is no exploit available. It is recommended to replace the affected component with an...

Per saperne di più

CVE-2024-23937 | Silicon Labs Gecko OS Debug Interface format string

A vulnerability has been found in Silicon Labs Gecko OS and classified as critical. Affected by this vulnerability is an unknown functionality of the component Debug Interface. The manipulation leads to format string. This vulnerability is known as CVE-2024-23937. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected...

Per saperne di più

CVE-2024-6246 | Wyze Cam 3 Realtek Wi-Fi Driver heap-based overflow

A vulnerability, which was classified as critical, was found in Wyze Cam 3. Affected is an unknown function of the component Realtek Wi-Fi Driver. The manipulation leads to heap-based buffer overflow. This vulnerability is traded as CVE-2024-6246. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected...

Per saperne di più

CVE-2024-6247 | Wyze Cam 3 Wi-Fi SSID os command injection

A vulnerability, which was classified as critical, has been found in Wyze Cam 3. This issue affects some unknown processing of the component Wi-Fi SSID Handler. The manipulation leads to os command injection. The identification of this vulnerability is CVE-2024-6247. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected...

Per saperne di più

CVE-2024-6249 | Wyze Cam 3 TCP Traffic stack-based overflow

A vulnerability classified as very critical has been found in Wyze Cam 3. This affects an unknown part of the component TCP Traffic Handler. The manipulation leads to stack-based buffer overflow. This vulnerability is uniquely identified as CVE-2024-6249. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected...

Per saperne di più

CVE-2024-4940 | Gradio URLs redirect

A vulnerability classified as problematic has been found in Gradio. This affects an unknown part of the component URLs Handler. The manipulation leads to open redirect. This vulnerability is uniquely identified as CVE-2024-4940. It is possible to initiate the attack remotely. There is no exploit...

Per saperne di più
Caricamento