226 matches found
Unspecified vulnerability in Intel NVMe and RSTe driver pack installers
Intel NVMe and RSTe are both products of Intel Corporation.Intel NVMe is an open logical device interface specification for accessing non-volatile storage media connected via the PCI Express PCIe bus.RSTe is an embedded rapid storage software.driver pack installers is one of the driver installers...
New Cold Boot Attack Unlocks Disk Encryption On Nearly All Modern PCs
Security researchers have revealed a new attack to steal passwords, encryption keys and other sensitive information stored on most modern computers, even those with full disk encryption. The attack is a new variation of a traditionalCold Boot Attack , which is around since 2008 and lets attackers...
CVE-2017-15656
Password are stored in plaintext in nvram in the HTTPd server in all current versions = 3.0.0.4.380.7743 of Asus asuswrt...
UBUNTU-CVE-2016-6224
ecryptfs-setup-swap in eCryptfs does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning on a 1 NVMe or 2 MMC drive, which allows local users to obtain sensitive information via unspecified vectors. NOTE: this vulnerability exists because of an...
The vulnerability of Lexmark’s microprogramming software allows a hacker to obtain confidential information.
The vulnerability of Lexmark’s microprogramming software is related to the lack of protection for operational data. Exploiting this vulnerability can allow a local attacker to obtain confidential information by directly reading data from non-volatile memory...
Qemu: nvram: OOB r/w access in processing firmware configurations
An out-of-bounds read/write flaw was discovered in the way QEMU's Firmware Configuration device emulation processed certain firmware configurations. A privileged CAPSYSRAWIO guest user could use this flaw to crash the QEMU process instance or, potentially, execute arbitrary code on the host with...