Security Bulletin: Vulnerabilities in Intel Chipset affect IBM Cloud Pak System (CVE-2021-0060, CVE-2021-0147, CVE-2021-33080)

Summary Vulnerabilities in Intel Chipset affect IBM Cloud Pak System. IBM Cloud Pak System has addressed these vulnerabilities. Vulnerability Details CVEID:CVE-2021-0060 DESCRIPTION: Intel SPS could allow a physical attacker to gain elevated privileges on the system, caused by insufficient...

2022.2 IPU - Intel® Chipset Firmware Advisory

Summary: A potential security vulnerability in the Intel® Server Platform Services SPS firmware may allow denial of service. Intel is releasing firmware updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2022-26074 Description: Incomplete cleanup in a firmware...

Intel® Chipset Device Software Advisory

Summary: A potential security vulnerability in Intel® Chipset Device Software INF Utility may allow information disclosure. Intel is releasing software updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2019-14596 Description: Improper access control in the...

Android Security Bulletin—August 2022Stay organized with collectionsSave and categorize content based on your preferences.

The Android Security Bulletin contains details of security vulnerabilities affecting Android devices. Security patch levels of 2022-08-05 or later address all of these issues. To learn how to check a device's security patch level, see Check and update your Android version. Android partners are...

Qualcomm 芯片缓冲区错误漏洞

A Qualcomm chip is a chip from Qualcomm Incorporated USA. a way of miniaturizing circuitry including primarily semiconductor devices, but also passive components, etc. and is often fabricated on the surface of semiconductor wafers. A buffer error vulnerability exists in Qualcomm that originates...

Qualcomm 芯片缓冲区错误漏洞

A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way to miniaturize circuitry including primarily semiconductor devices, but also passive components, etc., and is often fabricated on the surface of semiconductor wafers. A buffer error vulnerability exists in Qualcomm that originates fr...

UNISOC chipset 缓冲区错误漏洞

UNISOC chipset is an integrated circuit chipset from China's Zilight Spreadtrum UNISOC. A buffer error vulnerability exists in the UNISOC chipset. No information about this vulnerability is available at this time, so please stay tuned to CNNVD or the vendor's announcement...

UNISOC chipset 缓冲区错误漏洞

UNISOC chipset is an integrated circuit chipset from China's Zilight Spreadtrum UNISOC. A buffer error vulnerability exists in the UNISOC chipset. No information about this vulnerability is available at this time, so please stay tuned to CNNVD or the vendor's announcement...

Critical UNISOC Chip Vulnerability Affects Millions of Android Smartphones

A critical security flaw has been uncovered in UNISOC's smartphone chipset that could be potentially weaponized to disrupt a smartphone's radio communications through a malformed packet. "Left unpatched, a hacker or a military unit can leverage such a vulnerability to neutralize communications in...

Vulnerabilities fixed in Intel processors and -chipsets

Intel has fixed vulnerabilities in several processors and chipsets. A local malicious party could potentially exploit them to cause a denial-of-service, gain gain access to system data or obtain elevated privileges. For the vulnerability with reference CVE-2021-33149 no security updates have been...

2021.1 IPU – Intel® CSME, SPS and LMS Advisory

Summary: Potential security vulnerabilities in the Intel® Converged Security and Manageability Engine CSME, Server Platform Services SPS, and Intel® Local Manageability Service Intel® LMS may allow escalation of privilege or information disclosure. Intel is releasing firmware and software updates...

2022.1 IPU - Intel® Boot Guard and Intel® TXT Advisory

Summary: A potential security vulnerability in Intel® Boot Guard and Intel® Trusted Execution Technology TXT for some Intel® processors may allow escalation of privilege. Intel is releasing firmware updates and prescriptive guidance to mitigate this potential vulnerability. Vulnerability Details:...

HUAWEI HarmonyOS Information Disclosure Vulnerability (CNVD-2022-50634)

HUAWEI HarmonyOS is an operating system from the Chinese company Huawei HUAWEI. It provides a full-scenario distributed operating system based on a microkernel. A security vulnerability exists in the HUAWEI HarmonyOS security component, which stems from a serial number capture vulnerability in th...

HUAWEI HarmonyOS 安全漏洞

HUAWEI HarmonyOS is an operating system from the Chinese company Huawei HUAWEI. It provides a full-scenario distributed operating system based on a microkernel. A security vulnerability exists in the HUAWEI HarmonyOS security component, which stems from a serial number capture vulnerability in th...

UNISOC Chipsets 安全漏洞

UNISOC Chipsets is a chipset from China's Zilight Spreadtrum UNISOC. A security vulnerability exists in UNISOC Chipsets that stems from a lack of boundary checking in the wifi service, which may result in out-of-bounds writes...

Android Security Bulletin—April 2022Stay organized with collectionsSave and categorize content based on your preferences.

The Android Security Bulletin contains details of security vulnerabilities affecting Android devices. Security patch levels of 2022-04-05 or later address all of these issues. To learn how to check a device's security patch level, see Check and update your Android version. Android partners are...

CVE-2022-27250

The UNISOC chipset through 2022-03-15 allows attackers to obtain remote control of a mobile phone, e.g., to obtain sensitive information from text messages or the device's screen, record video of the device's physical environment, or modify data...

CVE-2022-27250

The UNISOC chipset through 2022-03-15 allows attackers to obtain remote control of a mobile phone, e.g., to obtain sensitive information from text messages or the device's screen, record video of the device's physical environment, or modify data...

CVE-2022-27250

The UNISOC chipset through 2022-03-15 allows attackers to obtain remote control of a mobile phone, e.g., to obtain sensitive information from text messages or the device's screen, record video of the device's physical environment, or modify data...

Open redirect

The UNISOC chipset through 2022-03-15 allows attackers to obtain remote control of a mobile phone, e.g., to obtain sensitive information from text messages or the device's screen, record video of the device's physical environment, or modify data...