1768 matches found
CVE-2022-2483
The bootloader in the Nokia ASIK AirScale system module versions 474021A.101 and 474021A.102 loads public keys for firmware verification signature. If an attacker modifies the flash contents to corrupt the keys, secure boot could be permanently disabled on a given device...
CVE-2022-2482
A vulnerability exists in Nokia’s ASIK AirScale system module versions 474021A.101 and 474021A.102 that could allow an attacker to place a script on the file system accessible from Linux. A script placed in the appropriate place could allow for arbitrary code execution in the bootloader...
Code injection
A vulnerability exists in Nokia’s ASIK AirScale system module versions 474021A.101 and 474021A.102 that could allow an attacker to place a script on the file system accessible from Linux. A script placed in the appropriate place could allow for arbitrary code execution in the bootloader...
CVE-2022-2483
The bootloader in the Nokia ASIK AirScale system module versions 474021A.101 and 474021A.102 loads public keys for firmware verification signature. If an attacker modifies the flash contents to corrupt the keys, secure boot could be permanently disabled on a given device...
CVE-2022-2483
The bootloader in the Nokia ASIK AirScale system module versions 474021A.101 and 474021A.102 loads public keys for firmware verification signature. If an attacker modifies the flash contents to corrupt the keys, secure boot could be permanently disabled on a given device...
CVE-2022-2483
CVE-2022-2483 – Nokia ASIK AirScale System Module affected versions: 474021A.101 and 474021A.102. The issue arises in the bootloader which loads public keys used for firmware verification signatures; if an attacker modifies flash contents to corrupt these keys, secure boot could be permanently di...
CVE-2022-2482
CVE-2022-2482 affects Nokia ASIK AirScale system module versions 474021A.101 and 474021A.102. The vulnerability is described as improper access control for volatile memory containing boot code (CWE-1274), enabling an attacker with local access to place a script on the Linux-accessible file system...
CVE-2022-2482
A vulnerability exists in Nokia’s ASIK AirScale system module versions 474021A.101 and 474021A.102 that could allow an attacker to place a script on the file system accessible from Linux. A script placed in the appropriate place could allow for arbitrary code execution in the bootloader...
PT-2023-12767 · Nokia · Nokia Asik Airscale
Name of the Vulnerable Software and Affected Versions: Nokia ASIK AirScale system module versions 474021A.101 through 474021A.102 Description: The bootloader in the Nokia ASIK AirScale system module loads public keys for firmware verification signature. If an attacker modifies the flash contents ...
Google Android 缓冲区错误漏洞
Google Android is a Linux-based open source operating system from Google Inc. in the United States. Google Android suffers from a security vulnerability that stems from a faulty Qualcomm component bootloader...
AZL-34792 CVE-2022-3775 affecting package grub2 for versions less than 2.06-14
When rendering certain unicode sequences, grub2's font code doesn't proper validate if the informed glyph's width and height is constrained within bitmap size. As consequence an attacker can craft an input which will lead to a out-of-bounds write into grub2's heap, leading to memory corruption an...
CVE-2022-3917
Improper access control of bootloader function was discovered in Motorola Mobility Motorola e20 prior to version RONS31.267-38-8 allows attacker with local access to read partition or RAM data...
Improper access control
Improper access control of bootloader function was discovered in Motorola Mobility Motorola e20 prior to version RONS31.267-38-8 allows attacker with local access to read partition or RAM data...
CVE-2022-3917
Improper access control of bootloader function was discovered in Motorola Mobility Motorola e20 prior to version RONS31.267-38-8 allows attacker with local access to read partition or RAM data...
CVE-2022-3917
Improper access control of bootloader function was discovered in Motorola Mobility Motorola e20 prior to version RONS31.267-38-8 allows attacker with local access to read partition or RAM data...
PT-2022-24789 · Motorola · Motorola E20
Name of the Vulnerable Software and Affected Versions: Motorola e20 versions prior to RONS31.267-38-8 Description: An issue with improper access control of the bootloader function was discovered, allowing an attacker with local access to read partition or RAM data. Recommendations: For versions...
CVE-2022-37907
A vulnerability exists in the ArubaOS bootloader on 7xxx series controllers which can result in a denial of service DoS condition on an impacted system. A successful attacker can cause a system hang which can only be resolved via a power cycle of the impacted controller...
CVE-2022-37907
A vulnerability exists in the ArubaOS bootloader on 7xxx series controllers which can result in a denial of service DoS condition on an impacted system. A successful attacker can cause a system hang which can only be resolved via a power cycle of the impacted controller...
CVE-2022-37908
An authenticated attacker can impact the integrity of the ArubaOS bootloader on 7xxx series controllers. Successful exploitation can compromise the hardware chain of trust on the impacted controller...
CVE-2022-37908
An authenticated attacker can impact the integrity of the ArubaOS bootloader on 7xxx series controllers. Successful exploitation can compromise the hardware chain of trust on the impacted controller...