CVE-2021-0271

CVE-2021-0271 describes a Double Free vulnerability in the sfid process of Juniper Networks Junos OS. An adjacently-connected attacker can trigger a sustained Denial of Service by sending crafted ARP packets to specific EX-series devices (EX2200-C, EX3200, EX3300, EX4200, EX4500, EX4550, EX6210, ...

Design/Logic Flaw

OPPO Android Phone with MTK chipset and Android 8.1/9/10/11 versions have an information leak vulnerability. The “adb shell getprop ro.vendor.aee.enforcing” or “adb shell getprop ro.vendor.aee.enforcing” return no...

CVE-2020-11836

Technical details about CVE-2020-11836 are not provided in the supplied documents; no specifics on affected components, root cause, or fixes are publicly available. Monitor for updates.

CVE-2020-11836

OPPO Android Phone with MTK chipset and Android 8.1/9/10/11 versions have an information leak vulnerability. The “adb shell getprop ro.vendor.aee.enforcing” or “adb shell getprop ro.vendor.aee.enforcing” return no...

Oppo Android Phone with MTK Information Disclosure Vulnerability

OPPO Oppo Android Phone with MTK is a series of OPPO Android phones with MTK chipset from OPPO Guangdong Mobile Communication OPPO Company in China, which is designed to support powerful 3D image processing technology, and outperforms the performance of other CPUs of the same class in 3D image...

RHEL 8 : RHV-M (ovirt-engine) 4.4.z security, upd[ovirt-4.4.4] 0-day (Moderate) (RHSA-2021:0383)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:0383 advisory. The ovirt-engine package provides the Red Hat Virtualization Manager, a centralized management platform that allows system administrators to view and...

Samsung mobile devices buffer error vulnerability

Samsung mobile devices O are products of Samsung Corporation in South Korea.Samsung mobile devices O is a series of cell phones.Samsung mobile devices P is a series of mobile hard drives.Samsung mobile devices Q is a series of TVs.Samsung mobile devices Q is a series of TVs. Samsung mobile device...

Qualcomm SM8250 Security Vulnerability

The Qualcomm SM8250 is a central processing unit CPU product from Qualcomm Incorporated USA. A security vulnerability exists in Samsung mobile devices with Q10.0 and R11.0 Qualcomm SM8250 chipsets software that could allow an attacker to trigger a power shortage event leading to the detection of ...

CVE-2020-28341

An issue was discovered on Samsung mobile devices with Q10.0 Exynos990 chipsets software. The S3K250AF Secure Element CC EAL 5+ chip allows attackers to execute arbitrary code and obtain sensitive information via a buffer overflow. The Samsung ID is SVE-2020-18632 November 2020...

CVE-2020-25056

An issue was discovered on Samsung mobile devices with Q10.0 Galaxy S20 software. Because HAL improperly checks versions, bootloading by the S.LSI NFC chipset is mishandled. The Samsung ID is SVE-2020-16169 August 2020...

CVE-2020-25052

An issue was discovered on Samsung mobile devices with Q10.0 exynos9830 chipsets software. H-Arx allows attackers to execute arbitrary code or cause a denial of service memory corruption because indexes are mishandled. The Samsung ID is SVE-2020-17426 August 2020...

CVE-2020-25056

An issue was discovered on Samsung mobile devices with Q10.0 Galaxy S20 software. Because HAL improperly checks versions, bootloading by the S.LSI NFC chipset is mishandled. The Samsung ID is SVE-2020-16169 August 2020...

CVE-2020-25056

CVE-2020-25056 affects Samsung mobile devices on Q(10.0) (Galaxy S20). Root cause: HAL version checks mishandled bootloading by the S.LSI NFC chipset. Impact: potential security impact described as improper checks; no exploit details provided in the documents. Affected component: HAL in Samsung A...

UEFI scanner brings Microsoft Defender ATP protection to a new level

Microsoft Defender Advanced Threat Protection Microsoft Defender ATP is extending its protection capabilities to the firmware level with a new Unified Extensible Firmware Interface UEFI scanner. Hardware and firmware-level attacks have continued to rise in recent years, as modern security solutio...

CVE-2020-0534

Improper input validation in the DAL subsystem for IntelR CSME versions before 12.0.64, 13.0.32, 14.0.33 and 14.5.12 may allow an unauthenticated user to potentially enable denial of service via network access...

CVE-2020-13832

Technical details about CVE-2020-13832 are not publicly available in the provided connected documents. Monitor for updates.

CVE-2020-3633

Array out of bound may occur while playing mp3 file as no check is there on offset if it is greater than the buffer allocated or not in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in...

Quantum Security Goes Live with Samsung Galaxy

Samsung and South Korean telecom giant SK Telecom have debuted the Galaxy A Quantum 5G smartphone, sporting a quantum random number generation RNG chipset. It’s the first commercialization of quantum technology for mobile phones, and it will serve as a significant bellwether for full quantum...

CVE-2020-12747

An issue was discovered on Samsung mobile devices with Q10.0 Exynos980 9630 and Exynos990 9830 chipsets software. The Bootloader has a heap-based buffer overflow because of the mishandling of specific commands. The Samsung IDs are SVE-2020-16981, SVE-2020-16991 May 2020...

CVE-2020-6616

Some Broadcom chips mishandle Bluetooth random-number generation because a low-entropy Pseudo Random Number Generator PRNG is used in situations where a Hardware Random Number Generator HRNG should have been used to prevent spoofing. This affects, for example, Samsung Galaxy S8, S8+, and Note8...