Lucene search
K

46 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.44 views

EUVD-2020-23275

Malware in sbrugna...

5.5CVSS5.6AI score0.01314EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-23274

Malware in sbrugna...

7.8CVSS7.6AI score0.04035EPSS
Exploits1References3
Talos
Talos
added 2022/08/17 12:0 a.m.33 views

Microsoft Azure Sphere /proc/fdt mmap operation out-of-bounds read vulnerability

Talos Vulnerability Report TALOS-2022-1497 Microsoft Azure Sphere /proc/fdt mmap operation out-of-bounds read vulnerability August 17, 2022 CVE Number CVE-2022-35821 SUMMARY An out-of-bounds read vulnerability exists in the /proc/fdt mmap operation functionality of Microsoft Azure Sphere 22.02. A...

4.4CVSS5.1AI score0.01004EPSS
Exploits0
CNNVD
CNNVD
added 2022/08/09 12:0 a.m.5 views

Microsoft Azure Sphere 缓冲区错误漏洞

Microsoft Azure Sphere is an appliance from Microsoft Corporation USA that is used to provide security in cloud environments. A buffer error vulnerability exists in Microsoft Azure Sphere. No information about this vulnerability is available at this time, so stay tuned to CNNVD or the vendor...

4.4CVSS6.6AI score0.01004EPSS
Exploits0References6
CNVD
CNVD
added 2021/11/10 12:0 a.m.24 views

Microsoft Azure Sphere Input Validation Error Vulnerability

Microsoft Azure Sphere is an appliance used by Microsoft USA to provide security in cloud environments. Microsoft Azure Sphere is vulnerable to an input validation error. No details of the vulnerability are currently available...

6.7CVSS2.7AI score0.00598EPSS
Exploits0References1
CNVD
CNVD
added 2021/11/10 12:0 a.m.22 views

Microsoft Azure Sphere Buffer Overflow Vulnerability

Microsoft Azure Sphere is an appliance used to provide security in cloud environments by Microsoft Corporation USA. No detailed vulnerability details are available at this time...

4.4CVSS3.3AI score0.00728EPSS
Exploits0References1
CNVD
CNVD
added 2021/11/10 12:0 a.m.22 views

Microsoft Azure Sphere Information Disclosure Vulnerability (CNVD-2021-93635)

Microsoft Azure Sphere is a security vulnerability in Microsoft Azure Sphere, an appliance used by Microsoft to provide security in cloud environments. No details of the vulnerability are currently available...

4.4CVSS2AI score0.00795EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/11/09 12:0 a.m.5 views

Microsoft Azure Sphere 缓冲区错误漏洞

Microsoft Azure Sphere is an appliance used to provide security in cloud environments by Microsoft Corporation USA. No detailed vulnerability details are available at this time...

4.4CVSS5.5AI score0.00728EPSS
Exploits0References4
Talos
Talos
added 2021/11/09 12:0 a.m.23 views

Microsoft Azure Sphere Pluton concurrent syscalls denial of service vulnerability

Summary A denial of service vulnerability exists in the Pluton syscalls functionality of Microsoft Azure Sphere 21.01, 21.06 and 21.07. A specially-crafted set of syscalls executed in parallel by an unprivileged process can lead to the crash of Pluton, resulting in a device reboot denial of...

7.6AI score
Exploits0
Talos
Talos
added 2021/11/09 12:0 a.m.20 views

Microsoft Azure Sphere Security Monitor SMSyscallStageBaseManifests offset calculation out-of-bounds read vulnerability

Summary An out-of-bounds read vulnerability exists in the Security Monitor SMSyscallStageBaseManifests offset calculation of Microsoft Azure Sphere 21.01. A specially crafted manifest could lead to information disclosure. An attacker can use syscalls to trigger this vulnerability. Tested Versions...

4.4CVSS4.1AI score0.00728EPSS
Exploits0
Talos
Talos
added 2021/11/09 12:0 a.m.30 views

Microsoft Azure Sphere Security Monitor SMSyscallStageBaseManifests image validation signature check bypass vulnerability

Summary A signature check bypass vulnerability exists in the Security Monitor SMSyscallStageBaseManifests image validation functionality of Microsoft Azure Sphere 21.01. A specially crafted manifest can lead to a firmware downgrade. An attacker can use syscalls to trigger this vulnerability. Test...

6.7CVSS6.2AI score0.00547EPSS
Exploits0
Talos
Talos
added 2021/11/09 12:0 a.m.17 views

Microsoft Azure Sphere Security Monitor SMSyscallCommitImageStaging 1BL firmware downgrade vulnerability

Summary A firmware downgrade vulnerability exists in the Security Monitor SMSyscallCommitImageStaging 1BL functionality of Microsoft Azure Sphere 21.01. A specially-crafted set of Secmon syscalls can lead to downgrading the version of the 1BL firmware. An attacker can use syscalls to trigger this...

7AI score
Exploits0
Talos
Talos
added 2021/11/09 12:0 a.m.16 views

Microsoft Azure Sphere Security Monitor SMSyscallCommitImageStaging stage-without-manifest denial of service vulnerability

Summary A denial of service vulnerability exists in the Security Monitor SMSyscallCommitImageStaging stage-without-manifest functionality of Microsoft Azure Sphere 21.01. A specially crafted image package can lead to boot looping, requiring manual recovery. An attacker can flash a malicious image...

7AI score
Exploits0
Talos
Talos
added 2021/11/09 12:0 a.m.19 views

Microsoft Azure Sphere Kernel GPIO_GET_PIN_ACCESS_CONTROL_USER information disclosure vulnerability

Talos Vulnerability Report TALOS-2021-1340 Microsoft Azure Sphere Kernel GPIOGETPINACCESSCONTROLUSER information disclosure vulnerability November 9, 2021 CVE Number None SUMMARY An information disclosure vulnerability exists in the GPIOGETPINACCESSCONTROLUSER functionality of Microsoft Azure...

7.1AI score
Exploits0
CNNVD
CNNVD
added 2021/09/14 12:0 a.m.6 views

Microsoft Azure Sphere 安全漏洞

Microsoft Azure Sphere is an appliance from Microsoft Corporation USA that is used to provide security in cloud environments. A security vulnerability exists in Microsoft Azure Sphere. The following products and versions are affected: Azure Sphere...

4.4CVSS6.1AI score0.00751EPSS
Exploits0References5
Talos
Talos
added 2021/09/14 12:0 a.m.24 views

Microsoft Azure Sphere Security Monitor SMSyscallPeripheralAcquire information disclosure vulnerability

Talos Vulnerability Report TALOS-2021-1309 Microsoft Azure Sphere Security Monitor SMSyscallPeripheralAcquire information disclosure vulnerability September 14, 2021 CVE Number None SUMMARY An information disclosure vulnerability exists in the Security Monitor SMSyscallPeripheralAcquire...

7.7AI score
Exploits0
CNNVD
CNNVD
added 2021/08/10 12:0 a.m.5 views

Microsoft Azure Sphere 输入验证错误漏洞

Microsoft Azure Sphere is an appliance from Microsoft Corporation USA that is used to provide security in cloud environments. An input validation error vulnerability exists in Microsoft Azure Sphere. The following products and versions are affected:Azure Sphere...

4.4CVSS5.1AI score0.00743EPSS
Exploits0References4
CNNVD
CNNVD
added 2021/08/10 12:0 a.m.5 views

Microsoft Azure Sphere 权限许可和访问控制问题漏洞

Microsoft Azure Sphere is an appliance from Microsoft Corporation USA that is used to provide security in cloud environments. A vulnerability exists in Microsoft Azure Sphere with privilege permission and access control issues. The following products and versions are affected:Azure Sphere...

7.8CVSS7.3AI score0.00479EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/08/10 12:0 a.m.3 views

Microsoft Azure Sphere 输入验证错误漏洞

Microsoft Azure Sphere is an appliance from Microsoft Corporation USA that is used to provide security in cloud environments. An input validation error vulnerability exists in Microsoft Azure Sphere. The following products and versions are affected:Azure Sphere...

6CVSS6.1AI score0.00633EPSS
Exploits0References4
Talos
Talos
added 2021/08/10 12:0 a.m.23 views

Microsoft Azure Sphere Security Monitor SMSyscallWriteBlockToStageImage information disclosure vulnerability

Talos Vulnerability Report TALOS-2021-1310 Microsoft Azure Sphere Security Monitor SMSyscallWriteBlockToStageImage information disclosure vulnerability August 10, 2021 CVE Number None SUMMARY An information disclosure vulnerability exists in the Security Monitor SMSyscallWriteBlockToStageImage...

6.4AI score
Exploits0
Rows per page
Query Builder