67 matches found
CVE-2022-27672
When SMT is enabled, certain AMD processors may speculatively execute instructions using a target from the sibling thread after an SMT mode switch potentially resulting in information disclosure...
CVE-2022-27672
When SMT is enabled, certain AMD processors may speculatively execute instructions using a target from the sibling thread after an SMT mode switch potentially resulting in information disclosure...
SUSE CVE-2022-27672
When SMT is enabled, certain AMD processors may speculatively execute instructions using a target from the sibling thread after an SMT mode switch potentially resulting in information disclosure...
SUSE CVE-2009-2910
arch/x86/ia32/ia32entry.S in the Linux kernel before 2.6.31.4 on the x8664 platform does not clear certain kernel registers before a return to user mode, which allows local users to read register values from an earlier process by switching an ia32 process to 64-bit mode...
SUSE CVE-2016-1548
An attacker can spoof a packet from a legitimate ntpd server with an origin timestamp that matches the peer-dst timestamp recorded for that server. After making this switch, the client in NTP 4.2.8p4 and earlier and NTPSec aa48d001683e5b791a743ec9c575aaf7d867a2b0c will reject all future legitimat...
hw: cpu: intel: Branch History Injection (BHI)
A flaw was found in hw. The Branch History Injection BHI describes a specific form of intra-mode BTI. This flaw allows an unprivileged attacker to manipulate the branch history before transitioning to supervisor or VMX root mode. This issue is an effort to cause an indirect branch predictor to...
Rockwell Automation Logix Controllers
1. EXECUTIVE SUMMARY CVSS v3 10.0 ATTENTION: Exploitable remotely/low attack complexity Vendor: Rockwell Automation Equipment: Logix Controllers Vulnerability: Inclusion of Functionality from Untrusted Control Sphere 2. RISK EVALUATION Successful exploitation of this vulnerability may allow an...
WordPress Curtain plugin <= 1.0.1 - Unauthenticated Maintenance Mode Switch vulnerability
Unauthenticated Maintenance Mode Switch vulnerability discovered by Hassan Khan Yusufzai Splint3r7 in WordPress Curtain plugin versions = 1.0.1. Solution Update the WordPress Curtain plugin to the latest available version at least 1.0.2...
ALBA-2021:5233 gnome-shell-extensions bug fix and enhancement update
GNOME Shell extensions allow for modifying the default GNOME Shell interface and its parts, such as window management and application launching. Bug Fixes and Enhancements: Disable unfullscreen gesture or a function to switch between normal mode and fullscreen mode BZ2009192 Desktop icons extensi...
GSD-2021-1000098 usb: dwc3: core: Do core softreset when switch mode
usb: dwc3: core: Do core softreset when switch mode This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.11.20 by commit...
PT-2021-8277 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the usb: dwc3: core: Do core softreset when switch mode in the Linux kernel. According to the programming guide, to switch mode for DRD controller, the driver...
The vulnerability of Intel Graphics Driver drivers is related to errors in handling the kernel mode switch, which allows attackers to exploit their privileges.
The vulnerability of Intel Graphics Driver drivers is related to errors in handling the kernel mode switch. Exploiting this vulnerability can allow an attacker to gain increased privileges...
expat: heap-based buffer over-read via crafted XML input
In libexpat before 2.2.8, crafted XML input could fool the parser into changing from DTD parsing to document parsing too early; a consecutive call to XMLGetCurrentLineNumber or XMLGetCurrentColumnNumber then resulted in a heap-based buffer over-read...
CVE-2019-5688
NVIDIA NVFlash, NVUFlash Tool prior to v5.588.0 and GPUModeSwitch Tool prior to 2019-11, NVIDIA kernel mode driver nvflash.sys, nvflsh32.sys, and nvflsh64.sys contains a vulnerability in which authenticated users with administrative privileges can gain access to device memory and registers of oth...
ZTE MF910 – An end of life router, running lots of vivacious hidden code
You might be here because you saw our talk at Defcon 27. You might want to watch that for the full rundown! The ZTE MF910 is a really interesting router for reversing, mainly because it’s full of nice debug calls, and underused functionality. Also, it’s never going to get patched, and it’s really...
Buffer overflow
A vulnerability in the Link Layer Discovery Protocol LLDP subsystem of Cisco Nexus 9000 Series Application Centric Infrastructure ACI Mode Switch Software could allow an adjacent, unauthenticated attacker to cause a denial of service DoS condition or execute arbitrary code with root privileges. T...
CVE-2019-1890
CVE-2019-1890 affects Cisco Nexus 9000 Series Fabric Switches in ACI mode. The issue lies in the LLDP setup during infrastructure VLAN formation, where insufficient security requirements allow an unauthenticated, adjacent attacker to bypass validations and connect an unauthorized server to the in...
CVE-2019-1803
A vulnerability in the filesystem management for the Cisco Nexus 9000 Series Application Centric Infrastructure ACI Mode Switch Software could allow an authenticated, local attacker with administrator rights to gain elevated privileges as the root user on an affected device. The vulnerability is...
CVE-2019-1803
CVE-2019-1803 concerns Cisco Nexus 9000 Series in ACI Mode Switch Software. A local, authenticated administrator can exploit overly permissive permissions on specific system files to execute arbitrary OS commands as root. Exploitation requires valid credentials and crafting a command string to be...
CVE-2019-1592
A vulnerability in the background operations functionality of Cisco Nexus 9000 Series Application Centric Infrastructure ACI Mode Switch Software could allow an authenticated, local attacker to gain elevated privileges as root on an affected device. The vulnerability is due to insufficient...