Arm Mali Graphics Processing Unit contains a use-after-free vulnerability that can allow a non-privileged user to gain root privilege and/or disclose information.

Sources: CISA, NIST

PiiGAB M-Bus contains code injection, unprotected transport of credentials, use of hard-coded credentials and more vulnerabilities that could allow an attacker to inject arbitrary commands, steal passwords or trick valid users into executing malicious commands.

Sources: CISA, PiiGAB

ABUS TVIP contains a command injection vulnerability that could allow arbitrary file reads or remote code execution.

Sources: ABUS, CISA

Mitsubishi Electric MELSEC Series CPU module contains a classic buffer overflow vulnerability that can allow a remote attacker to cause a denial-of-service condition or execute malicious code on a target product by sending specially crafted packets.

Sources: CISA, Mitsubishi Electric

D-link DIR-859 Router contains a command execution vulnerability that can allow an unauthenticated remote attacker to execute system commands.

Sources: CISA, NIST