Ricky Lawshae

**Name of the Vulnerable Software and Affected Versions** Visteon Infotainment System (affected versions not specified) **Description** This issue allows physically present attackers to execute arbitrary code on affected installations of the Visteon Infotainment system. Authentication is not required to exploit this issue. The specific flaw exists within the DeviceManager, where the process does not properly validate a user-supplied string before using it to construct SQL queries. An attacker can leverage this issue to execute code in the context of root. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Microhard Bullet-LTE versions prior to 1.2.0-r1112 **Description** This issue allows remote attackers to execute arbitrary code on affected installations. Authentication is not required to exploit this issue. The flaw exists within the handling of authentication headers, specifically due to the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this issue to execute code in the context of root. **Recommendations** For versions prior to 1.2.0-r1112, update to version 1.2.0-r1112 or later to resolve the issue. As a temporary workaround, consider restricting access to the authentication headers handling mechanism until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Microhard Bullet-LTE versions prior to 1.2.0-r1112 **Description** This issue allows remote attackers to execute arbitrary code on affected installations. Authentication is required to exploit this issue. The flaw exists within the handling of the `ping` parameter provided to `tools.sh`, resulting from the lack of proper validation of a user-supplied string before using it to execute a system call. An attacker can leverage this issue to execute code in the context of root. **Recommendations** For versions prior to 1.2.0-r1112, update to version 1.2.0-r1112 or later to resolve the issue. As a temporary workaround, consider restricting access to the `tools.sh` script and validating all user-supplied input to minimize the risk of exploitation. Avoid using the `ping` parameter in the affected `tools.sh` script until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** ARRIS VAP2500 versions prior to FW08.41 **Description** The issue allows remote attackers to bypass authentication due to improper password validation. **Recommendations** For ARRIS VAP2500 versions prior to FW08.41, update to FW08.41 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** ARRIS VAP2500 versions prior to FW08.41 **Description** The issue allows remote attackers to obtain credentials by reading the configuration files. This is related to the management portal in the affected device. **Recommendations** For ARRIS VAP2500 versions prior to FW08.41, update the firmware to FW08.41 or later to resolve the issue. As a temporary workaround, consider restricting access to the management portal to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Denon AVR-3313CI (affected versions not specified) **Description** The issue is related to a cross-site scripting (XSS) vulnerability, specifically a persistent cross-site scripting vulnerability. This vulnerability allows remote attackers to inject arbitrary web script or HTML via unspecified parameters in the s network.asp file, which is related to the 'Friendlyname' feature. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Realtek SDK (affected versions not specified) **Description** The issue is related to the miniigd SOAP service in Realtek SDK, which allows remote attackers to execute arbitrary code via a crafted NewInternalClient request. This has been exploited in the wild through 2023. The vulnerability is associated with insufficient input validation, allowing an attacker to execute arbitrary code using specially formed requests. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.