854 matches found
ALPINE-CVE-2019-18424
An issue was discovered in Xen through 4.12.x allowing attackers to gain host OS privileges via DMA in a situation where an untrusted domain has access to a physical device. This occurs because passed through PCI devices may corrupt host memory after deassignment. When a PCI device is assigned to...
Xen Denial of Service Vulnerability (CNVD-2019-34763)
Xen is an open source virtual machine monitor product. Xen suffers from a denial-of-service vulnerability that stems from a page-writable contention condition during the addition of a passed PCI device, which can be exploited by an x86 PV client OS attacker to cause a denial of service or gain...
PT-2019-4891 · Xen +1 · Xen +1
Name of the Vulnerable Software and Affected Versions: Xen versions prior to 4.11.x Description: The issue is caused by synchronization errors when using a shared resource, allowing an attacker to cause a denial of service or gain privileges by leveraging a page-writability race condition during...
The vulnerability of the jsm_probe_one handler implementation in Linux kernels allows a hacker to trigger a service failure.
The vulnerability in the implementation of the jsmprobeone function in the drivers/tty/serial/jsm/jsm.ko kernel of the Linux operating system is caused by a memory leak. Exploiting this vulnerability can allow an attacker to cause a system failure by connecting a Digi International Neo and Classi...
Schneider Electric Modicon X80 Peripheral Remote IO Adaptor PRA0100 Detection
Binary data 266.prm...
Thunderclap Flaws Shatter Peripheral Security
UPDATE A set of vulnerabilities collectively dubbed “Thunderclap” is putting computers at risk from weaponized peripheral devices think network cards, storage and graphics cards, and even chargers and video projectors. The flaws reside in the Thunderbolt hardware interface developed by Intel in...
CVE-2018-5914
Improper input validation in TZ led to array out of bound in TZ function while accessing the peripheral details using the incoming data in Snapdragon Mobile, Snapdragon Wear version MDM9206, MDM9607, MDM9650, SD 210/SD 212/SD 205, SD 425, SD 430, SD 450, SD 625, SD 650/52, SD 835, SDA660...
Input validation
Improper input validation in TZ led to array out of bound in TZ function while accessing the peripheral details using the incoming data in Snapdragon Mobile, Snapdragon Wear version MDM9206, MDM9607, MDM9650, SD 210/SD 212/SD 205, SD 425, SD 430, SD 450, SD 625, SD 650/52, SD 835, SDA660...
June 14, 2016 — KB3163017 (OS Build 10240.16942)
June 14, 2016 — KB3163017 OS Build 10240.16942 This update includes quality improvements and security fixes. No new operating system features are being introduced in this update. Key changes include: Improved reliability of Internet Explorer 11, Microsoft Edge, and Windows Explorer. Improved...
The vulnerability of the Software Guard eXtensions processor technology allows unauthorized access to data stored in a secure zone.
The vulnerability of the Software Guard eXtensions SGX processor implementation relates to the possibility of speculative execution of instructions. Exploiting this vulnerability can allow an attacker to gain unauthorized access to data protected by SGX, by executing attacks through peripheral...
Intel processors’ vulnerabilities, related to the possibility of speculative execution commands, allow attackers to gain unauthorized access to the system memory of the operating system or SMM-memory.
The vulnerability of Intel processors lies in the possibility of speculative execution of instructions. Exploiting this vulnerability can allow an attacker to gain unauthorized access to the memory of the operating system’s kernel or SMM memory by executing attacks through peripheral channels tha...
Intel processors’ vulnerability, related to the possibility of speculative execution commands, allows attackers to circumvent the memory isolation mechanism of virtual machines.
Intel processors’ vulnerabilities are related to the possibility of speculative execution of instructions. Exploiting these vulnerabilities can allow attackers to gain access to the memory of the supervisor or other virtual machines by overcoming the mechanism that isolates virtual machine memory...
PT-2023-8981 · Libvirt +9 · Libvirt +9
Name of the Vulnerable Software and Affected Versions: libvirt affected versions not specified Description: A security flaw in libvirt occurs due to repeatedly querying an SR-IOV PCI device's capabilities, exposing a memory leak caused by a failure to free the virPCIVirtualFunction array within t...
Microsoft Windows: LPT port redirection (Remote Desktop Services)
This policy setting specifies whether to prevent the redirection of data to client LPT ports during a Remote Desktop Services session. You can use this setting to prevent users from mapping local LPT ports and redirecting data from the remote computer to local LPT port peripherals. By default,...
Intel SPI Write Protection Local Security Bypass Vulnerability
Intel NUC7i3BNK, etc. are CPU Central Processing Unit products of Intel Corporation USA. A local security bypass vulnerability exists in Intel SPI Write Protection, which can be exploited by a local attacker to bypass certain security restrictions...
CVE-2016-8438
Integer overflow leading to a TOCTOU condition in hypervisor PIL. An integer overflow exposes a race condition that may be used to bypass Peripheral Image Loader PIL authentication. Product: Android. Versions: Kernel 3.18. Android ID: A-31624565. References: QC-CR1023638...
Qemu: OOB access in address_space_rw leads to segmentation fault
An out-of-bounds flaw was found in the QEMU emulator built using 'addressspacetranslate' to map an address to a MemoryRegionSection. The flaw could occur while doing pcidmaread/write calls, resulting in an out-of-bounds read-write access error. A privileged user inside a guest could use this flaw...
Qemu: OOB access in address_space_rw leads to segmentation fault
An out-of-bounds flaw was found in the QEMU emulator built using 'addressspacetranslate' to map an address to a MemoryRegionSection. The flaw could occur while doing pcidmaread/write calls, resulting in an out-of-bounds read-write access error. A privileged user inside a guest could use this flaw...
Qemu: OOB access in address_space_rw leads to segmentation fault
An out-of-bounds flaw was found in the QEMU emulator built using 'addressspacetranslate' to map an address to a MemoryRegionSection. The flaw could occur while doing pcidmaread/write calls, resulting in an out-of-bounds read-write access error. A privileged user inside a guest could use this flaw...
GATTacker - BLE (Bluetooth Low Energy) Man-in-the-Middle
A Node.js package for BLE Bluetooth Low Energy security assessment using Man-in-the-Middle and other attacks. Prerequisites see: https://github.com/sandeepmistry/noble https://github.com/sandeepmistry/bleno Install npm install gattacker Usage Configure Running both components Set up variables in...