Cisco NX-OS Software Access Control Error Vulnerability (CNVD-2025-01388)

Cisco NX-OS Software is a set of data center-grade operating system software for switches from the U.S. company Cisco Cisco. The Cisco NX-OS Software suffers from an Access Control Error vulnerability, which arises from an insecure bootloader setting, and can be exploited by an attacker to bypass...

CLSA-2024-1734041590 Update of grub2

Update version and epoch...

ROS-20241209-01

A vulnerability in AMD EPYC™ AGESA™ PI packages is related to incorrect input and range validation in the header of an AMD Secure Processor ASP bootloader image. of the AMD Secure Processor ASP bootloader image. Exploitation of the vulnerability could allow an attacker to, use attacker-controlled...

CVE-2024-20397

A vulnerability in the bootloader of Cisco NX-OS Software could allow an unauthenticated attacker with physical access to an affected device, or an authenticated, local attacker with administrative credentials, to bypass NX-OS image signature verification. This vulnerability is due to insecure...

CVE-2024-20397

Cisco NX-OS Software is affected by a bootloader vulnerability (CVE-2024-20397) that allows bypassing image signature verification. The issue stems from insecure bootloader settings and can be exploited by executing bootloader commands to load unverified software. Attacker access requirements: un...

CVE-2024-20397 Cisco NX-OS Software Image Verification Bypass Vulnerability

A vulnerability in the bootloader of Cisco NX-OS Software could allow an unauthenticated attacker with physical access to an affected device, or an authenticated, local attacker with administrative credentials, to bypass NX-OS image signature verification. This vulnerability is due to insecure...

CVE-2024-20397 Cisco NX-OS Software Image Verification Bypass Vulnerability

A vulnerability in the bootloader of Cisco NX-OS Software could allow an unauthenticated attacker with physical access to an affected device, or an authenticated, local attacker with administrative credentials, to bypass NX-OS image signature verification. This vulnerability is due to insecure...

Cisco NX-OS Software Image Verification Bypass Vulnerability

A vulnerability in the bootloader of Cisco NX-OS Software could allow an unauthenticated attacker with physical access to an affected device, or an authenticated, local attacker with administrative credentials, to bypass NX-OS image signature verification. This vulnerability is due to insecure...

PT-2024-18658 · Cisco · Nexus 9000 +5

Name of the Vulnerable Software and Affected Versions: Cisco NX-OS Software affected versions not specified Description: A vulnerability in the bootloader of Cisco NX-OS Software could allow an unauthenticated attacker with physical access to an affected device, or an authenticated, local attacke...

Cisco NX-OS Software 访问控制错误漏洞

Cisco NX-OS Software is a set of data center-grade operating system software for switches from the U.S. company Cisco Cisco. The Cisco NX-OS Software suffers from an Access Control Error vulnerability, which arises from an insecure bootloader setting, and can be exploited by an attacker to bypass...

CVE-2018-9372

In cmdflashmmcsparseimg of dlcommands.c, there is a possible out of bounds write due to a missing bounds check. This could lead to a local escalation of privilege in the bootloader with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2018-9369

In bootloader there is fastboot command allowing user specified kernel command line arguments. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation...

CVE-2018-9372

In cmdflashmmcsparseimg of dlcommands.c, there is a possible out of bounds write due to a missing bounds check. This could lead to a local escalation of privilege in the bootloader with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2018-9372

In cmdflashmmcsparseimg of dlcommands.c, there is a possible out of bounds write due to a missing bounds check. This could lead to a local escalation of privilege in the bootloader with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2018-9369

In bootloader there is fastboot command allowing user specified kernel command line arguments. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation...

CVE-2018-9369

In bootloader there is fastboot command allowing user specified kernel command line arguments. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation...

Google Android 安全漏洞

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An elevation of privilege vulnerability exists in the Google Android MediaTek component bootloader. An attacker can exploit this vulnerability to achieve elevation of privilege...

Google Android 安全漏洞

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An elevation of privilege vulnerability exists in the Google Android MediaTek component bootloader. An attacker can exploit this vulnerability to achieve elevation of privilege...

Google Android 安全漏洞

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An elevation of privilege vulnerability exists in the Google Android LG component Bootloader. An attacker can exploit this vulnerability to achieve elevation of privilege...

Google Android 安全漏洞

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An elevation of privilege vulnerability exists in the Google Android MediaTek component bootloader. An attacker can exploit this vulnerability to achieve elevation of privilege...