Firmware Security Vulnerabilities
An OS command injection vulnerability exists in AE1021PE firmware version 2.0.9 and earlier and AE1021 firmware version 2.0.9 and earlier. If this vulnerability is exploited, an arbitrary OS command may be executed by an attacker who can log in to the...
Improper authentication in the SMA100 SSL-VPN virtual office portal allows a remote authenticated attacker to create an identical external domain user using accent characters, resulting in an MFA...
8.8CVSS
8.4AI Score
0.001EPSS
Improper neutralization of special elements in the SMA100 SSL-VPN management interface allows a remote authenticated attacker with administrative privilege to inject arbitrary commands as a 'nobody' user, potentially leading to OS Command Injection...
7.2CVSS
7.1AI Score
0.001EPSS
Unitronics VisiLogic before version 9.9.00, used in Vision and Samba PLCs and HMIs, uses a default administrative password. An unauthenticated attacker with network access can take administrative control of a vulnerable...
Dell PowerEdge platforms 16G Intel E5 BIOS and Dell Precision BIOS, version 1.4.4, contain active debug code security vulnerability. An unauthenticated physical attacker could potentially exploit this vulnerability, leading to information disclosure, information tampering, code execution, denial...
7.1CVSS
6.5AI Score
0.001EPSS
Dell PowerEdge platforms 16G Intel E5 BIOS and Dell Precision BIOS, version 1.4.4, contain active debug code security vulnerability. An unauthenticated physical attacker could potentially exploit this vulnerability, leading to information tampering, code execution, denial of...
6.8CVSS
6.5AI Score
0.001EPSS
An issue was discovered in Vonage Box Telephone Adapter VDV23 version VDV21-3.2.11-0.5.1, allows local attackers to bypass UART authentication controls and read/write arbitrary values to the memory of the...
7.8CVSS
7.7AI Score
0.0004EPSS
Memory corruption while submitting a large list of sync points in an AUX command to the...
Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL...
Memory corruption while processing pin reply in Bluetooth, when pin code received from APP layer is greater than expected...
8.4CVSS
7.8AI Score
0.0004EPSS
Transient DOS while parsing WPA IES, when it is passed with length more than expected...
7.5CVSS
7.5AI Score
0.0004EPSS
7.5CVSS
7.5AI Score
0.0005EPSS
8.4CVSS
7.8AI Score
0.0004EPSS
9.8CVSS
9.5AI Score
0.001EPSS
7.5CVSS
7.6AI Score
0.0004EPSS
Memory corruption while sending an Assoc Request having BTM Query or BTM Response containing MBO...
9.8CVSS
9.6AI Score
0.001EPSS
7.8CVSS
7.8AI Score
0.0004EPSS
7.8CVSS
7.8AI Score
0.0004EPSS
7.1CVSS
5.6AI Score
0.0004EPSS
Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management...
7.5CVSS
7.5AI Score
0.0004EPSS
Transient DOS while converting TWT (Target Wake Time) frame parameters in the OTA...
7.5CVSS
7.5AI Score
0.0005EPSS
Memory corruption in Automotive OS whenever untrusted apps try to access HAb for graphics...
8.4CVSS
7.7AI Score
0.0004EPSS
Under certain scenarios the WLAN Firmware will reach an assertion due to state confusion while looking up peer...
7.5CVSS
7.5AI Score
0.0005EPSS
7.5CVSS
7.5AI Score
0.0005EPSS
7.5CVSS
7.5AI Score
0.0005EPSS
7.5CVSS
7.5AI Score
0.0005EPSS
8.4CVSS
7.8AI Score
0.0004EPSS
Cryptographic issue in GPS HLOS Driver while downloading Qualcomm GNSS assistance...
9.1CVSS
9.1AI Score
0.001EPSS
7.5CVSS
7.5AI Score
0.0005EPSS
7.8CVSS
7.8AI Score
0.0004EPSS
8.4CVSS
7.8AI Score
0.0004EPSS
7.8CVSS
7.7AI Score
0.0004EPSS
7.8CVSS
7.8AI Score
0.0004EPSS
Memory corruption in WLAN Host while setting the PMK length in PMK length in internal...
7.8CVSS
7.8AI Score
0.0004EPSS
Information disclosure when the trusted application metadata symbol addresses are accessed while loading an ELF in...
6.5CVSS
6.4AI Score
0.0004EPSS
Memory Corruption in WLAN Host while deserializing the input PMK bytes without checking the input PMK...
7.8CVSS
7.6AI Score
0.0004EPSS
8.8CVSS
8.8AI Score
0.0004EPSS
Memory corruption in BT controller while parsing debug commands with specific sub-opcodes at HCI interface...
7.8CVSS
7.9AI Score
0.0004EPSS
Memory corruption in UTILS when modem processes memory specific Diag commands having arbitrary address values as input...
7.8CVSS
7.9AI Score
0.0004EPSS
7.8CVSS
7.6AI Score
0.0004EPSS
7.8CVSS
7.6AI Score
0.0004EPSS
7.8CVSS
7.6AI Score
0.0004EPSS
Memory corruption in MPP performance while accessing DSM watermark using external memory...
7.8CVSS
7.8AI Score
0.0004EPSS
Memory Corruption in Radio Interface Layer while sending an SMS or writing an SMS to...
7.8CVSS
7.5AI Score
0.0004EPSS
Weak encryption mechanisms in RFID Tags in Yale Conexis L1 v1.1.0 allows attackers to create a cloned tag via physical proximity to the...
6.5CVSS
6.2AI Score
0.0004EPSS
Weak encryption mechanisms in RFID Tags in Yale IA-210 Alarm v1.0 allows attackers to create a cloned tag via physical proximity to the...
6.5CVSS
6.2AI Score
0.0004EPSS
Weak encryption mechanisms in RFID Tags in Yale Keyless Lock v1.0 allows attackers to create a cloned tag via physical proximity to the...
6.5CVSS
6.2AI Score
0.0004EPSS
Incorrect Session Management and Credential Re-use in the Bluetooth LE stack of the Ultraloq UL3 2nd Gen Smart Lock Firmware 02.27.0012 allows an attacker to sniff the unlock code and unlock the device whilst within Bluetooth...
8.1CVSS
8AI Score
0.001EPSS
An issue discovered in Connectize AC21000 G6 641.139.1.1256 allows attackers to gain control of the device via the change password functionality as it does not prompt for the current...
9.8CVSS
9.6AI Score
0.001EPSS