262 matches found
PT-2025-54085
In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: don't reset device side if dwc3 was configured as host-only Commit c4a5153e87fd "usb: dwc3: core: Power-off core/PHYs on system suspend in host mode" replaces check for HOST only dr mode with current dr role. But durin...
PT-2025-53965
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s DRM subsystem related to the it6505 driver. Specifically, the HPD interrupt could be triggered before the it6505 device was fully registered as a DRM...
CVE-2025-14302
Certain motherboard models developed by GIGABYTE has a Protection Mechanism Failure vulnerability. Because IOMMU was not properly enabled, unauthenticated physical attackers can use a DMA-capable PCIe device to read and write arbitrary physical memory before the OS kernel and its security feature...
CVE-2025-14302 GIGABYTE|Motherboard - Protection Mechanism Failure
Certain motherboard models developed by GIGABYTE has a Protection Mechanism Failure vulnerability. Because IOMMU was not properly enabled, unauthenticated physical attackers can use a DMA-capable PCIe device to read and write arbitrary physical memory before the OS kernel and its security feature...
CVE-2023-53787
In the Linux kernel, the following vulnerability has been resolved: regulator: da9063: fix null pointer deref with partial DT config When some of the da9063 regulators do not have corresponding DT nodes a null pointer dereference occurs on boot because such regulators have no initdata causing the...
CVE-2025-13940
An Expected Behavior Violation CWE-440 vulnerability in WatchGuard Fireware OS may allow an attacker to bypass the Fireware OS boot time system integrity check and prevent the Firebox from shutting down in the event of a system integrity check failure. The on-demand system integrity check in the...
CVE-2025-13940 WatchGuard Firebox Boot Time System Integrity Check Bypass
An Expected Behavior Violation CWE-440 vulnerability in WatchGuard Fireware OS may allow an attacker to bypass the Fireware OS boot time system integrity check and prevent the Firebox from shutting down in the event of a system integrity check failure. The on-demand system integrity check in the...
CVE-2025-13940 WatchGuard Firebox Boot Time System Integrity Check Bypass
An Expected Behavior Violation CWE-440 vulnerability in WatchGuard Fireware OS may allow an attacker to bypass the Fireware OS boot time system integrity check and prevent the Firebox from shutting down in the event of a system integrity check failure. The on-demand system integrity check in the...
CVE-2025-13940
WatchGuard Fireware OS contains an Expected Behavior Violation (CWE-440) vulnerability (CVE-2025-13940) that could allow bypass of the boot-time system integrity check and prevent Firebox shutdown in the event of a failure. Affected versions are Fireware OS 12.8.1–12.11.4 and 2025.1–2025.1.2. The...
PT-2025-49164
Name of the Vulnerable Software and Affected Versions WatchGuard Fireware OS versions 12.8.1 through 12.11.4 WatchGuard Fireware OS versions 2025.1 through 2025.1.2 Description A flaw exists within the Fireware OS that could allow an attacker to circumvent the boot time system integrity check. Th...
CVE-2025-59705
Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allow a Physically Proximate Attacker to Escalate Privileges by enabling the USB interface through chassis probe insertion during system boot, aka "Unauthorized Reactivation of the USB interface" or F01...
CVE-2025-59705
CVE-2025-59705 affects Entrust nShield Connect XC, nShield 5c, and nShield HSMi up to 13.6.11 or 13.7. The issue is a privilege-escalation path via enabling the USB interface by inserting a chassis probe during system boot, described as "Unauthorized Reactivation of the USB interface" (F01). The ...
CVE-2025-59705
Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allow a Physically Proximate Attacker to Escalate Privileges by enabling the USB interface through chassis probe insertion during system boot, aka "Unauthorized Reactivation of the USB interface" or F01...
CVE-2025-61661 Grub2: grub2: out-of-bounds write via malicious usb device
A vulnerability has been identified in the GRUB Grand Unified Bootloader component. This flaw occurs because the bootloader mishandles string conversion when reading information from a USB device, allowing an attacker to exploit inconsistent length values. A local attacker can connect a malicious...
kernel: of_numa: fix uninitialized memory nodes causing kernel panic
A flaw was found in the linux kernel ofnuma subsystem fails to properly initialize memory‑only NUMA nodes i.e., nodes without CPUs. When such nodes remain uninitialized, a subsequent call to freeareainit may access NODEDATA for those nodes and trigger a kernel panic due to a NULL pointer...
ROS-20251106-09
A vulnerability in the QEMU hardware emulator is related to the incorrect release and use of the irqfd for vector 0 during boot time in QEMU Virtio PCI Bindings hw/virtio/virtio/pci.c. Exploitation of the of the vulnerability could allow an attacker to cause a denial of service...
Siemens SIMATIC, SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-43889)
padata: vulnerability due to a possible divide-by-zero error in padatamthelper during bootup, caused by an uninitialized chunksize being zero. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...
EUVD-2011-5258
Malware in sbrugna...
EUVD-2021-27187
Malware in sbrugna...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987149)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987149 advisory. In the Linux kernel, the following vulnerability has been resolved: rtc: cmos: Fix event handler registration ordering issue Because acpiinstallfixedeventhandler...