Lucene search
K

854 matches found

Cvelist
Cvelist
added 2021/09/09 7:36 a.m.22 views

CVE-2021-1962

Buffer Overflow while processing IOCTL for getting peripheral endpoint information there is no proper validation for input maximum endpoint pair and its size in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired...

6.7CVSS6.9AI score0.00147EPSS
Exploits0References1
CVE
CVE
added 2021/09/09 7:36 a.m.82 views

CVE-2021-1962

CVE-2021-1962 describes a buffer overflow in the Qualcomm Snapdragon PCI/IOCTL path for retrieving peripheral endpoint information, caused by insufficient validation of the input maximum endpoint pair and its size. The vulnerability affects Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Ind...

6.7CVSS6.6AI score0.00147EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2021/09/06 12:0 a.m.4 views

Qualcomm 芯片安全漏洞

A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way to miniaturize circuits mainly semiconductor devices, but also passive components, etc. and are often manufactured on the surface of semiconductor wafers. The Qualcomm chip suffers from a security vulnerability that stems from not...

6.7CVSS7AI score0.00147EPSS
Exploits0References5
Malwarebytes
Malwarebytes
added 2021/08/16 12:8 p.m.38 views

How to troubleshoot hardware problems that look like malware problems

Sometimes it’s hard to figure out what exactly is going wrong with your computer. What do you do if you’ve run all the scans, checked all the files, and everything says the PC is malware free? Here’s a list of common problems that resemble cybersecurity issues, but could be caused by something...

Exploits0
Positive Technologies
Positive Technologies
added 2021/05/24 12:0 a.m.5 views

PT-2021-9138 · Zephyr · Zephyr

Name of the Vulnerable Software and Affected Versions: Zephyr versions = v1.14.2, = v2.2.0 Description: The issue concerns Missing Size Checks in Bluetooth HCI over SPI, which involves Improper Handling of Length Parameter Inconsistency. Recommendations: For Zephyr versions = v1.14.2, = v2.2.0, a...

8.8CVSS8.6AI score0.00486EPSS
Exploits0References3
Prion
Prion
added 2021/05/06 1:15 p.m.16 views

Code injection

NXP LPC55S6x microcontrollers 0A and 1B, i.MX RT500 silicon rev B1 and B2, i.MX RT600 silicon rev A0, B0, LPC55S6x, LPC55S2x, LPC552x silicon rev 0A, 1B, LPC55S1x, LPC551x silicon rev 0A and LPC55S0x, LPC550x silicon rev 0A include an undocumented ROM patch peripheral that allows unsigned,...

4.6CVSS6.7AI score0.00452EPSS
Exploits1References2
ThreatPost
ThreatPost
added 2021/05/04 4:7 p.m.143 views

Hundreds of Millions of Dell Users at Risk from Kernel-Privilege Bugs

Five high-severity security flaws in Dell’s firmware update driver are impacting potentially hundreds of millions of Dell desktops, laptops, notebooks and tablets, researchers said. The bugs have gone undisclosed for 12 years, and could allow the ability to bypass security products, execute code...

7.5CVSS0.3AI score0.57474EPSS
Exploits26References5
OSV
OSV
added 2021/04/12 8:15 p.m.1 views

CVE-2021-21545

Dell Peripheral Manager 1.3.1 or greater contains remediation for a local privilege escalation vulnerability that could be potentially exploited to gain arbitrary code execution on the system with privileges of the system user...

7.8CVSS6.2AI score0.00283EPSS
Exploits0References1
NVD
NVD
added 2021/04/12 8:15 p.m.8 views

CVE-2021-21545

Dell Peripheral Manager 1.3.1 or greater contains remediation for a local privilege escalation vulnerability that could be potentially exploited to gain arbitrary code execution on the system with privileges of the system user...

7.8CVSS0.00283EPSS
Exploits0References1
Prion
Prion
added 2021/04/12 8:15 p.m.16 views

Privilege escalation

Dell Peripheral Manager 1.3.1 or greater contains remediation for a local privilege escalation vulnerability that could be potentially exploited to gain arbitrary code execution on the system with privileges of the system user...

7.2CVSS8.1AI score0.00283EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/04/12 7:50 p.m.7 views

CVE-2021-21545

Dell Peripheral Manager 1.3.1 or greater contains remediation for a local privilege escalation vulnerability that could be potentially exploited to gain arbitrary code execution on the system with privileges of the system user...

7.8CVSS8.4AI score0.00283EPSS
Exploits0References1
CVE
CVE
added 2021/04/12 7:50 p.m.38 views

CVE-2021-21545

CVE-2021-21545 affects Dell Peripheral Manager 1.3.1 or greater. Local privilege escalation could lead to arbitrary code execution with SYSTEM privileges. Dell provides remediation via a security update (DSA-2021-079) for Dell Peripheral Manager; no exploit details are disclosed in the provided d...

7.8CVSS8.1AI score0.00283EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2021/04/12 12:0 a.m.2 views

Dell Peripheral Manager 代码问题漏洞

Dell Peripheral Manager is an application from Dell USA. It provides on-screen instructions on how to pair other devices with your computer via Bluetooth. An elevation of privilege vulnerability exists in Dell Peripheral Manager versions prior to 1.3.1, which can be exploited by an attacker to ga...

7.8CVSS6.5AI score0.00283EPSS
Exploits0References2
CNVD
CNVD
added 2021/04/09 12:0 a.m.7 views

Dell Peripheral Manager Elevation of Privilege Vulnerability

Dell Peripheral Manager is an application from Dell USA. It provides on-screen instructions on how to pair other devices with your computer via Bluetooth. An elevation of privilege vulnerability exists in Dell Peripheral Manager versions prior to 1.3.1, which can be exploited by an attacker to ga...

7.8CVSS7.9AI score0.00283EPSS
Exploits0References1
OSV
OSV
added 2021/03/22 5:15 p.m.4 views

AZL-6543 CVE-2021-28972 affecting package kernel for versions less than 5.10.78.1-1

In drivers/pci/hotplug/rpadlparsysfs.c in the Linux kernel through 5.11.8, the RPA PCI Hotplug driver has a user-tolerable buffer overflow when writing a new device name to the driver from userspace, allowing userspace to write data to the kernel stack frame directly. This occurs because...

6.7CVSS7AI score0.00858EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2021/02/02 12:0 a.m.3 views

The vulnerability of the VFIO PCI kernel driver for Linux operating systems, related to insufficient handling of exceptional conditions, allows a hacker to trigger a service failure.

The vulnerability of the VFIO PCI kernel driver in the Linux operating system is related to insufficient handling of exceptional conditions. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.3CVSS6.5AI score0.00404EPSS
Exploits0References35Affected Software5
Talos Blog
Talos Blog
added 2020/12/16 6:21 a.m.42 views

Vulnerability Spotlight: Multiple vulnerabilities in NZXT computer monitoring software

Carl Hurd of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw. NZXT’s CAM computer monitoring software contains multiple vulnerabilities an attacker could use to carry out a range of malicious actions. CAM provides users information on their machines, such as fan speeds, temperature...

7AI score
Exploits0
OSV
OSV
added 2020/12/15 5:15 p.m.0 views

DEBIAN-CVE-2020-29567

An issue was discovered in Xen 4.14.x. When moving IRQs between CPUs to distribute the load of IRQ handling, IRQ vectors are dynamically allocated and de-allocated on the relevant CPUs. De-allocation has to happen when certain constraints are met. If these conditions are not met when first checke...

6.2CVSS7.5AI score0.0036EPSS
Exploits0References1
NVD
NVD
added 2020/11/02 7:15 a.m.39 views

CVE-2020-3703

u'Buffer over-read issue in Bluetooth peripheral firmware due to lack of check for invalid opcode and length of opcode received from central deviceThis CVE is equivalent to Link Layer Length Overfow issue CVE-2019-16336,CVE-2019-17519 and Silent Length Overflow issueCVE-2019-17518 mentioned in...

9.8CVSS6.8AI score0.00702EPSS
Exploits0References2
Prion
Prion
added 2020/11/02 7:15 a.m.28 views

Design/Logic Flaw

u'Buffer over-read issue in Bluetooth peripheral firmware due to lack of check for invalid opcode and length of opcode received from central deviceThis CVE is equivalent to Link Layer Length Overfow issue CVE-2019-16336,CVE-2019-17519 and Silent Length Overflow issueCVE-2019-17518 mentioned in...

7.5CVSS6.8AI score0.0148EPSS
Exploits2References2
Rows per page
Query Builder