Page 7 of 10846 results (0.236 seconds)

CVSS: 2.4EPSS: 0%CPEs: -EXPL: 0

Hathway Skyworth Router CM5100-511 v4.1.1.24 was discovered to store sensitive information about USB and Wifi connected devices in plaintext. • http://skyworth.com https://github.com/nitinronge91/Sensitive-Information-disclosure-via-SPI-flash-firmware-for-Hathway-router-CVE-2024-46383 • CWE-312: Cleartext Storage of Sensitive Information

CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0

This could lead to information disclosure with no additional execution privileges needed.   • https://source.android.com/security/bulletin/2018-06-01 •

CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0

An attacker could connect to the internal JTAG interface and read or write to flash memory using an off-the-shelf debugging tool, which could disrupt the function of the device and/or cause unauthorized information disclosure. • https://www.cisa.gov/news-events/ics-medical-advisories/icsma-24-319-01 • CWE-1191: On-Chip Debug and Test Interface With Improper Access Control •

CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0

This could disrupt the function of the device and/or cause unauthorized information disclosure. • https://www.cisa.gov/news-events/ics-medical-advisories/icsma-24-319-01 • CWE-494: Download of Code Without Integrity Check •

CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0

An attacker could execute a brute-force attack to gain unauthorized access to the ventilator, and then make changes to device settings that could disrupt the function of the device and/or result in unauthorized information disclosure. • https://www.cisa.gov/news-events/ics-medical-advisories/icsma-24-319-01 • CWE-307: Improper Restriction of Excessive Authentication Attempts •