The following research outlines a vulnerability discovered in netmask npm package that is currently used by 278,722+ other projects. The...
Title netmask npm package - Improper Input Validation in netmask npm package v1.1.0 and below of octal literals results in...
Follow me on Twitter @sickcodes: https://twitter.com/sickcodes This research began in early September and I've been waiting on several confirmations to...
Title NoMagic (Dassault Systèmes) Teamwork Cloud 18.0-19.0 - Incorrect Permissions Assignment for a Critical Resource Allows Arbitrary Code Execution and...
CVE ID CVE-2020-28360 CVSS Score 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Internal ID SICK-2020-022 Vendor private-ip Project Product private-ip Product Versions: 1.0.5 and below...
The following piece is the culmination of a three-month long investigation into Smart TVs running Android. Having lived through this...
Title TCL Android Smart TV (All) - Incorrect Permission Assignment for Critical Vendor Resources - TCL Android TV Vendor Configuration...
Title TCL Android Smart TV (All) - Exposure of Information Through Directory Listing - TCL Android TV Filesystem Browsable to...
Title Exposure of Sensitive Information to an Unauthorized Actor - Brave Browser Potentially Logs The Last Time A Tor Window...
CVE-2020-27402 Hindotech HK1 TV Box - Root Privilege Escalation - Improper Access Control CVE ID CVE-2020-27402 CVSS Score 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H...
© 2017-2021 Sick.Codes