all InfoSec news
Multiple Vulnerabilities Found in Techview LA-5570 Wireless Gateway Home Automation Controller
Aug. 28, 2023, 11:09 p.m. | /u/9lyph
/r/netsec - Information Security News & Discussion www.reddit.com
Vulnerability Type: Directory Indexing, allows a threat actor to list the contents of specific directories outside of the web root context.
CVE-2023-34724
Vulnerability Type: On-Chip Debug and Test Interface With Improper Access Control, allows a threat actor unrestricted access to the root filesystem using an exposed UART interface, without the need for authentication.
CVE-2023-34725
Vulnerability Type: Incorrect Access Control, allows a threat actor access to sensitive systems configuration files without proper authentication or authorisation.
access access control actor automation chip context control controller cve debug directory exposed filesystem found gateway home home automation interface list netsec root test the web threat threat actor vulnerabilities vulnerability web wireless
More from www.reddit.com / /r/netsec - Information Security News & Discussion
Demystifying RCE Vulnerabilities in LLM-Integrated Apps
1 day, 2 hours ago |
www.reddit.com
Microsoft Developer Blogs Search Tool
1 day, 14 hours ago |
www.reddit.com
Your NVMe Had Been Syz’ed: Fuzzing NVMe-oF/TCP with Syzkaller
4 days, 8 hours ago |
www.reddit.com
Jobs in InfoSec / Cybersecurity
IT Security Manager
@ Timocom GmbH | Erkrath, Germany
Cybersecurity Service Engineer
@ Motorola Solutions | Singapore, Singapore
Sr Cybersecurity Vulnerability Specialist
@ Health Care Service Corporation | Chicago Illinois HQ (300 E. Randolph Street)
Associate, Info Security (SOC) analyst
@ Evolent | Pune
Public Cloud Development Security and Operations (DevSecOps) Manager
@ Danske Bank | Copenhagen K, Denmark
Cybersecurity Risk Analyst IV
@ Computer Task Group, Inc | United States