CVE-2021-37583

MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle IEEE 1905 protocols. Affected Chipsets MT7603E, MT7613, MT7615, MT7622, MT7628, MT7629, MT7915; Affected Software Versions 2.0.2; Out-of-bounds write...

MediaTek Apusys缓冲区错误漏洞

MediaTek Apusys is a chipset component from China's MediaTek Corporation MediaTek. A buffer error vulnerability exists in MediaTek Apusys, which stems from the product's apusys component not effectively checking resource boundaries. An attacker could use this vulnerability to cause privilege...

MediaTek Apusys缓冲区错误漏洞

MediaTek Apusys is a chipset component from China's MediaTek Corporation MediaTek. A buffer error vulnerability exists in MediaTek Apusys, which stems from the product's apusys component not effectively checking resource boundaries. An attacker could use this vulnerability to cause privilege...

Qualcomm 芯片代码问题漏洞

A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way to miniaturize circuits mainly semiconductor devices, but also passive components, etc., and are from time to time fabricated on the surface of semiconductor wafers. A code issue vulnerability exists in Qualcomm Chipsets that stems...

CVE-2021-26334 AMD Chipset Driver Information Disclosure Vulnerability

The AMDPowerProfiler.sys driver of AMD μProf tool may allow lower privileged users to access MSRs in kernel which may lead to privilege escalation and ring-0 code execution by the lower privileged user...

CVE-2020-12954

A side effect of an integrated chipset option may be able to be used by an attacker to bypass SPI ROM protections, allowing unauthorized SPI ROM modification...

CVE-2020-12954

A side effect of an integrated chipset option may be able to be used by an attacker to bypass SPI ROM protections, allowing unauthorized SPI ROM modification...

Design/Logic Flaw

A side effect of an integrated chipset option may be able to be used by an attacker to bypass SPI ROM protections, allowing unauthorized SPI ROM modification...

CVE-2020-12954

A side effect of an integrated chipset option may be able to be used by an attacker to bypass SPI ROM protections, allowing unauthorized SPI ROM modification...

CVE-2020-12954

CVE-2020-12954 relates to an AMD Platform Security Processor (ASP) boot loader header where improper input and range validation can allow attacker-controlled values before signature verification, potentially enabling arbitrary code execution and bypassing SPI ROM protections to modify SPI ROM. Th...

AMD Chipset Driver Information Disclosure Vulnerability

Bulletin ID: AMD-SB-1009 Potential Impact: Information Disclosure Severity: Medium Summary Low privileged malicious users may be able to access and leak data through the AMD Chipset Driver. CVE Details CVE-2021-26333 Insufficient access controls in the AMD Link Android app may potentially result ...

PT-2021-8201 · Amd +1 · Amd Epyc Agesa Pi +1

Name of the Vulnerable Software and Affected Versions: AMD EPYC AGESA PI affected versions not specified Description: The issue is related to a side effect of an integrated chipset option that can be exploited by an attacker to bypass SPI ROM protections, allowing unauthorized modification of the...

Google patches zero-day vulnerability, and others, in Android

Google has issued security patches for the Android Operating System. In total, the patches address 39 vulnerabilities. There are indications that one of the patched vulnerabilities may be under limited, targeted exploitation. The most severe of these issues is a critical security vulnerability in...

Android Security Bulletin—November 2021Stay organized with collectionsSave and categorize content based on your preferences.

The Android Security Bulletin contains details of security vulnerabilities affecting Android devices. Security patch levels of 2021-11-06 or later address all of these issues. To learn how to check a device's security patch level, see Check and update your Android version. Android partners are...

Samsung LTE RRC Buffer Overflow Vulnerability

Samsung LTE RRC is a protocol in Samsung mobile devices.The RRC word layer has a number of functions including broadcasting of Non-Access Layer NAS-related system information, broadcasting of Access Layer AS-related system information, paging, and establishing, maintaining, and releasing the RRC...

CVE-2021-25479

A possible heap-based buffer overflow vulnerability in Exynos CP Chipset prior to SMR Oct-2021 Release 1 allows arbitrary memory write and code execution...

CVE-2021-25478

A possible stack-based buffer overflow vulnerability in Exynos CP Chipset prior to SMR Oct-2021 Release 1 allows arbitrary memory write and code execution...

CVE-2021-25479

A possible heap-based buffer overflow vulnerability in Exynos CP Chipset prior to SMR Oct-2021 Release 1 allows arbitrary memory write and code execution...

CVE-2021-25478

A possible stack-based buffer overflow vulnerability in Exynos CP Chipset prior to SMR Oct-2021 Release 1 allows arbitrary memory write and code execution...

Stack overflow

A possible stack-based buffer overflow vulnerability in Exynos CP Chipset prior to SMR Oct-2021 Release 1 allows arbitrary memory write and code execution...