1774 matches found
CVE-2021-1111
Bootloader contains a vulnerability in the NV3P server where any user with physical access through USB can trigger an incorrect bounds check, which may lead to buffer overflow, resulting in limited information disclosure, limited data integrity, and denial of service across all components...
Buffer overflow
Bootloader contains a vulnerability in the NV3P server where any user with physical access through USB can trigger an incorrect bounds check, which may lead to buffer overflow, resulting in limited information disclosure, limited data integrity, and denial of service across all components...
CVE-2021-1111
Bootloader contains a vulnerability in the NV3P server where any user with physical access through USB can trigger an incorrect bounds check, which may lead to buffer overflow, resulting in limited information disclosure, limited data integrity, and denial of service across all components...
CVE-2021-1111
The CVE-2021-1111 entry concerns NVIDIA Jetson bootloader (NV3P server). Affected components are bootloader code on Jetson Linux devices (Jetson AGX Xavier, Jetson Xavier NX, Jetson TX2 series, Jetson TX2 NX, Jetson Nano). The vulnerability arises from an incorrect bounds check in the bootloader ...
Breaking the Android Bootloader on the Qualcomm Snapdragon 660
This post is a companion to the DEF CON 29 video available here. A few months ago I purchased an Android phone to do some research around a specific series of NFC chips, which required me to gain root access to the device in order to fully access its hardware capabilities. Gaining root access on...
NVIDIA Bootloader Buffer Overflow Vulnerability
NVIDIA Bootloader is a bootloader component from Nvidia Corporation. NVIDIA Bootloader is vulnerable to a buffer overflow vulnerability that can be exploited by attackers to cause information disclosure, data integrity, and information disclosure restrictions across all components...
NVIDIA Bootloader 缓冲区错误漏洞
NVIDIA Bootloader is a bootloader component from Nvidia Corporation. NVIDIA Bootloader is vulnerable to a buffer overflow vulnerability that can be exploited by attackers to cause information disclosure, data integrity, and information disclosure restrictions across all components...
Ecobee Ecobee3 Lite Hardcoded Default Root Credentials Vulnerability
Ecobee Ecobee3 Lite is a Wi-Fi smart thermostat from Ecobee Canada.Ecobee Ecobee3 Lite contains a security vulnerability that could be exploited by an attacker to access the password-protected bootloader environment via the serial console...
CVE-2021-27952
Hardcoded default root credentials exist on the ecobee3 lite 4.5.81.200 device. This allows a threat actor to gain access to the password-protected bootloader environment through the serial console...
CVE-2021-27952
Hardcoded default root credentials exist on the ecobee3 lite 4.5.81.200 device. This allows a threat actor to gain access to the password-protected bootloader environment through the serial console...
Hardcoded credentials
Hardcoded default root credentials exist on the ecobee3 lite 4.5.81.200 device. This allows a threat actor to gain access to the password-protected bootloader environment through the serial console...
Ecobee Ecobee3 Lite 信任管理问题漏洞
Ecobee Ecobee3 Lite is a Wi-Fi smart thermostat from Ecobee Canada.Ecobee Ecobee3 Lite contains a security vulnerability that could be exploited by an attacker to access the password-protected bootloader environment via the serial console...
Samsung Tizen Code Injection Vulnerability (CNVD-2021-51433)
Samsung Tizen is an open-source Linux-based mobile operating system from Samsung, South Korea, for smartphones, tablets, smartwatches, netbooks, in-vehicle messaging and entertainment devices, and smart TVs. Samsung Tizen suffers from a code injection vulnerability that stems from an input...
Samsung Tizen Code Injection Vulnerability (CNVD-2021-51434)
Samsung Tizen is an open-source Linux-based mobile operating system from Samsung, South Korea, for smartphones, tablets, smartwatches, netbooks, in-vehicle messaging and entertainment devices, and smart TVs. A code injection vulnerability exists in Samsung Tizen, which stems from a faulty input...
CVE-2021-25435
Improper input validation vulnerability in Tizen bootloader prior to Firmware update JUL-2021 Release allows arbitrary code execution using recovery partition in wireless firmware download mode...
CVE-2021-25435
Improper input validation vulnerability in Tizen bootloader prior to Firmware update JUL-2021 Release allows arbitrary code execution using recovery partition in wireless firmware download mode...
CVE-2021-25434
Improper input validation vulnerability in Tizen bootloader prior to Firmware update JUL-2021 Release allows arbitrary code execution using param partition in wireless firmware download mode...
CVE-2021-25434
Improper input validation vulnerability in Tizen bootloader prior to Firmware update JUL-2021 Release allows arbitrary code execution using param partition in wireless firmware download mode...
Input validation
Improper input validation vulnerability in Tizen bootloader prior to Firmware update JUL-2021 Release allows arbitrary code execution using param partition in wireless firmware download mode...
Input validation
Improper input validation vulnerability in Tizen bootloader prior to Firmware update JUL-2021 Release allows arbitrary code execution using recovery partition in wireless firmware download mode...