Güncel Güvenlik Açıkları

Certain Shenzhen PENGLIXIN components on DEPSTECH WiFi Digital Microscope 3, as used by Shekar Endoscope, allow a TELNET connection with the molinkadmin password for the molink account. Devamını Oku

DEPSTECH WiFi Digital Microscope 3 allows remote attackers to change the SSID and password, and demand a ransom payment from the rightful device owner, because there is no way to reset to Factory Default settings. Devamını Oku

MagicMotion Flamingo 2 has a lack of access control for reading from device descriptors. Devamını Oku

MagicMotion Flamingo 2 lacks BLE encryption, enabling data sniffing and packet forgery. Devamını Oku

The MagicMotion Flamingo 2 application for Android stores data on an sdcard under com.vt.magicmotion/files/Pictures, whence it can be read by other applications. Devamını Oku

Acronis True Image 2019 update 1 through 2020 on macOS allows local privilege escalation due to an insecure XPC service configuration. Devamını Oku

Acronis True Image through 2021 on macOS allows local privilege escalation from admin to root due to insecure folder permissions. Devamını Oku

Acronis True Image 2019 update 1 through 2021 update 1 on macOS allows local privilege escalation due to an insecure XPC service configuration. Devamını Oku

Acronis True Image for Mac before 2021 Update 4 allowed local privilege escalation due to insecure folder permissions. Devamını Oku

** UNSUPPORTED WHEN ASSIGNED ** Polipo through 1.1.1 allows denial of service via a reachable assertion during parsing of a malformed Range header. NOTE: This vulnerability only affects products that are no longer supported by the maintainer. Devamını Oku

A heap buffer overflow vulnerability in the r_asm_swf_disass function of Radare2-extras before commit e74a93c allows attackers to execute arbitrary code or carry out denial of service (DOS) attacks. Devamını Oku

SQL Injection vulnerability in Subrion CMS v4.2.1 in the search page if a website uses a PDO connection. Devamını Oku