CVE-2021-34400

The CVE-2021-34400 entry describes a vulnerability in the internal microcontroller of NVIDIA GPU and Tegra hardware that may allow a user with elevated privileges to access information from unscrubbed memory, leading to information disclosure. Affected components include NVIDIA GPU and Tegra micr...

CVE-2021-34399

NVIDIA GPU and Tegra hardware contain a vulnerability in the internal microcontroller which may allow a user with elevated privileges to gain access to information from unscrubbed registers, which may lead to information disclosure...

CVE-2021-23219

NVIDIA GPU and Tegra hardware contain a vulnerability in the internal microcontroller, which may allow a user with elevated privileges to access protected information by identifying, exploiting, and loading vulnerable microcode. Such an attack may lead to information disclosure...

CVE-2021-23219

CVE-2021-23219 affects NVIDIA GPU and Tegra hardware via an internal microcontroller vulnerability. The issue could allow a user with elevated privileges to access protected information by identifying, exploiting, and loading vulnerable microcode, potentially leading to information disclosure. Af...

CVE-2021-23217

NVIDIA CVE-2021-23217 affects GPU/Tegra hardware with an internal microcontroller flaw that may let an elevated-privilege user instantiate a DMA write within a specific time window, potentially corrupting code execution and impacting confidentiality, integrity, or availability. Affected architect...

CVE-2021-23201

CVE-2021-23201 describes a vulnerability in an internal microcontroller of NVIDIA GPU and Tegra hardware that could allow a user with elevated privileges to generate valid microcode by identifying, exploiting and loading vulnerable microcode. The impact could include information disclosure, data ...

CVE-2021-23201

NVIDIA GPU and Tegra hardware contain a vulnerability in an internal microcontroller, which may allow a user with elevated privileges to generate valid microcode by identifying, exploiting, and loading vulnerable microcode. Such an attack could lead to information disclosure, data corruption, or...

CVE-2021-1105

CVE-2021-1105 affects NVIDIA GPU and Tegra hardware, stemming from a vulnerability in the internal microcontroller that could allow a user with elevated privileges to access debug registers at runtime, potentially leading to information disclosure. Connected documents corroborate that the impact ...

CVE-2021-1088

Summary: CVE-2021-1088 affects NVIDIA GPU/Tegra hardware via an internal microcontroller vulnerability that may allow a user with elevated privileges to exploit debug mechanisms with insufficient access control, potentially leading to information disclosure. The CVE applies to multiple NVIDIA arc...

CVE-2021-1088

NVIDIA GPU and Tegra hardware contain a vulnerability in the internal microcontroller which may allow a user with elevated privileges to utilize debug mechanisms with insufficient access control, which may lead to information disclosure...

NVIDIA GPU 安全漏洞

Nvidia Gpu is a graphics processing unit from the American company Nvidia. It is used in machine learning, video editing and gaming applications. A security vulnerability exists in NVIDIA GPU and Tegra hardware, which stems from an internal microcontroller containing a vulnerability that allows...

Realtek RTL8195AM 缓冲区错误漏洞

The Realtek RTL8195AM is an IoT microcontroller from Realtek Semiconductor Realtek of Taiwan, China. A buffer error vulnerability exists in Realtek RTL8195AM versions prior to 2.0.10, which stems from a buffer overflow vulnerability in the incorrect IE length of the device's processing of HT...

The vulnerability in the implementation of the HeapTrack_alloc() function (kernel/tirtos/packages/ti/sysbios/heaps/HeapTrack.c) of the software development kit for microcontroller series CC13XX, CC26XX, CC32XX, and MSP432E4 allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the HeapTrackalloc function implementation kernel/tirtos/packages/ti/sysbios/heaps/HeapTrack.c in the software development kit for microcontroller series CC13XX, CC26XX, CC32XX, and MSP432E4 arises due to a numerical overflow condition. Exploiting this vulnerability can allow...

The vulnerability in the implementation of the ti_sysbios_rts_MemAlloc_alloc() function (tirtos/packages/ti/sysbios/rts/MemAlloc.xdt) in the software development kit for microcontroller families SimpleLink, including CC13XX, CC26XX, CC32XX, and MSP432E4, allows a malicious actor to execute arbitrary code or cause a service failure.

The vulnerability of the tisysbiosrtsMemAllocalloc implementation tirtos/packages/ti/sysbios/rts/MemAlloc.xdt in the software development kit for microcontroller families SimpleLink, including CC13XX, CC26XX, CC32XX, and MSP432E4, is caused by a numerical overflow. Exploiting this vulnerability c...

ECOA Building Automation System Cookie Poisoning Authentication Bypass

Summary 1 The Risk-Terminator Web Graphic control BEMS Building Energy Management System are designed to provide you with the latest in the Human Machine Interface HMI technology, for completely monitoring and controlling management. It may be used singly for small and medium sized facilities,...

The vulnerability of Moxa EDR-810 microcontroller software-related microprogramming systems, due to problems with the use of cryptography, allows a perpetrator to gain access to confidential data.

The vulnerability of Moxa EDR-810 microcontroller software is related to issues with the use of cryptography. Exploiting this vulnerability could allow a malicious actor to gain access to confidential data...

STMicroelectronics STM32Cube 安全漏洞

The Stmicroelectronics STMicroelectronics STM32Cube is a microcontroller for embedded systems from STMicroelectronics Switzerland. A security vulnerability exists in USBHParseCfgDesc in STMicroelectronics STM32Cube Middleware v1.8.0 and earlier versions, which denies service due to a system hang...

Espressif esp32 has an unspecified vulnerability

Espressif ESP32 is a microcontroller from China Lexin Information Technology Espressif. espressif esp32 has a security vulnerability that allows an attacker to cause a denial of service and kernel crash via a misformatted beacon csa frame...

Realtek RTL8710 Buffer Overflow Vulnerability (CNVD-2021-56811)

The Realtek RTL8710 is an IoT microcontroller from Realtek Semiconductor Taiwan, China.The Realtek RTL8710 suffers from a buffer overflow vulnerability that could be exploited by attackers to remotely execute code via the "memcpy" function...

Realtek RTL8710 Buffer Overflow Vulnerability

The Realtek RTL8710, an IoT microcontroller from Realtek Semiconductor Taiwan, China, suffers from a buffer overflow vulnerability that could be exploited to send a manual "Encrypted GTK" value as part of a as part of a WPA2 4-way handshake...