Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

255 matches found

Vulnrichment
Vulnrichmentadded 2024/12/05 12:0 a.m.6 views

CVE-2023-48010

STMicroelectronics SPC58 is vulnerable to Missing Protection Mechanism for Alternate Hardware Interface. Code running as Supervisor on the SPC58 PowerPC microcontrollers may disable the System Memory Protection Unit and gain unabridged read/write access to protected assets...

9.7AI score0.00412EPSS
Exploits0References2
CNNVD
CNNVDadded 2024/12/05 12:0 a.m.2 views

STMicroelectronics SPC58 安全漏洞

The STMicroelectronics SPC58 is a family of automotive microcontrollers from STMicroelectronics, USA. A security vulnerability exists in the STMicroelectronics SPC58 that stems from susceptibility to an alternate hardware interface missing protection mechanism...

9.8CVSS6.6AI score0.00412EPSS
Exploits0References2
CVE
CVEadded 2024/12/05 12:0 a.m.44 views

CVE-2023-48010

CVE-2023-48010 affects STMicroelectronics SPC58 PowerPC automotive MCUs. The vulnerability arises from a missing protection mechanism for an alternate hardware interface, allowing code executing with Supervisor privileges to disable the System Memory Protection Unit and obtain unabridged read/wri...

9.8CVSS7.2AI score0.00412EPSS
Exploits0References2
Cvelist
Cvelistadded 2024/12/05 12:0 a.m.11 views

CVE-2023-48010

STMicroelectronics SPC58 is vulnerable to Missing Protection Mechanism for Alternate Hardware Interface. Code running as Supervisor on the SPC58 PowerPC microcontrollers may disable the System Memory Protection Unit and gain unabridged read/write access to protected assets...

0.00412EPSS
Exploits0References2
OSV
OSVadded 2024/08/13 5:30 p.m.2 views

USN-6949-2 linux-lowlatency, linux-raspi vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM32 architecture; - ARM64 architecture; - M68K architecture; - OpenRISC architecture; - PowerPC architecture; -...

9.8CVSS6.6AI score0.0072EPSS
Exploits3References227
Tenable Nessus
Tenable Nessusadded 2024/08/13 12:0 a.m.72 views

Ubuntu 24.04 LTS : Linux kernel (Azure) vulnerabilities (USN-6952-2)

"The remote Ubuntu 24.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6952-2 advisory. Benedict Schlter, Supraja Sridhara, Andrin Bertschi, and Shweta Shinde discovered that an untrusted hypervisor could inject malicious VC interrupts and...

9.8CVSS7.8AI score0.0072EPSS
Exploits3References233
Ubuntu
Ubuntuadded 2024/08/12 6:5 p.m.93 views

USN-6955-1: Linux kernel (OEM) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM32 architecture; - ARM64 architecture; - M68K architecture; - OpenRISC architecture; - PowerPC architecture; -...

9.8CVSS7.1AI score0.0072EPSS
Exploits3
OSV
OSVadded 2024/08/12 6:5 p.m.2 views

USN-6955-1 linux-oem-6.8 vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM32 architecture; - ARM64 architecture; - M68K architecture; - OpenRISC architecture; - PowerPC architecture; -...

9.8CVSS6.6AI score0.0072EPSS
Exploits3References226
Tenable Nessus
Tenable Nessusadded 2024/08/09 12:0 a.m.160 views

Ubuntu 24.04 LTS : Linux kernel vulnerabilities (USN-6952-1)

"The remote Ubuntu 24.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6952-1 advisory. Benedict Schlter, Supraja Sridhara, Andrin Bertschi, and Shweta Shinde discovered that an untrusted hypervisor could inject malicious VC interrupts and...

9.8CVSS7.8AI score0.0072EPSS
Exploits3References233
Tenable Nessus
Tenable Nessusadded 2024/08/08 12:0 a.m.47 views

Ubuntu 22.04 LTS / 24.04 LTS : Linux kernel vulnerabilities (USN-6949-1)

"The remote Ubuntu 22.04 LTS / 24.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6949-1 advisory. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update...

9.8CVSS7.2AI score0.0072EPSS
Exploits3References226
Vulnrichment
Vulnrichmentadded 2024/04/04 8:20 a.m.17 views

CVE-2024-26787 mmc: mmci: stm32: fix DMA API overlapping mappings warning

In the Linux kernel, the following vulnerability has been resolved: mmc: mmci: stm32: fix DMA API overlapping mappings warning Turning on CONFIGDMAAPIDEBUGSG results in the following warning: DMA-API: mmci-pl18x 48220000.mmc: cacheline tracking EEXIST, overlapping mappings aren't supported WARNIN...

6.6AI score0.00012EPSS
Exploits0References6
CNNVD
CNNVDadded 2024/01/09 12:0 a.m.3 views

STMicroelectronics ST54-android-packages-apps-Nfc Security Vulnerability

STMicroelectronics ST54-android-packages-apps-Nfc is an NFC service from STMicroelectronics Switzerland. A security vulnerability exists in previous versions of STMicroelectronics ST54-android-packages-apps-Nfc package 130-20230215-23W07p0, which stems from the presence of an out-of-bounds read...

5.5CVSS6.8AI score0.00042EPSS
Exploits1References4
NVD
NVDadded 2024/01/01 6:15 p.m.12 views

CVE-2023-50096

STMicroelectronics STSAFE-A1xx middleware before 3.3.7 allows MCU code execution if an adversary has the ability to read from and write to the I2C bus. This is caused by an StSafeAReceiveBytes buffer overflow in the X-CUBE-SAFEA1 Software Package for STSAFE-A sample applications 1.2.0, and thus c...

7.5CVSS7.9AI score0.00419EPSS
Exploits3References1
OSV
OSVadded 2024/01/01 6:15 p.m.2 views

CVE-2023-50096

STMicroelectronics STSAFE-A1xx middleware before 3.3.7 allows MCU code execution if an adversary has the ability to read from and write to the I2C bus. This is caused by an StSafeAReceiveBytes buffer overflow in the X-CUBE-SAFEA1 Software Package for STSAFE-A sample applications 1.2.0, and thus c...

7.5CVSS6.4AI score0.00419EPSS
Exploits3References1
ATTACKERKB
ATTACKERKBadded 2024/01/01 6:15 p.m.3 views

CVE-2023-50096

STMicroelectronics STSAFE-A1xx middleware before 3.3.7 allows MCU code execution if an adversary has the ability to read from and write to the I2C bus. This is caused by an StSafeAReceiveBytes buffer overflow in the X-CUBE-SAFEA1 Software Package for STSAFE-A sample applications 1.2.0, and thus c...

7.5CVSS7.3AI score0.00419EPSS
Exploits3References2
Prion
Prionadded 2024/01/01 6:15 p.m.12 views

Buffer overflow

STMicroelectronics STSAFE-A1xx middleware before 3.3.7 allows MCU code execution if an adversary has the ability to read from and write to the I2C bus. This is caused by an StSafeAReceiveBytes buffer overflow in the X-CUBE-SAFEA1 Software Package for STSAFE-A sample applications 1.2.0, and thus c...

4.3CVSS8.1AI score0.00419EPSS
Exploits3References1Affected Software1
Vulnrichment
Vulnrichmentadded 2024/01/01 12:0 a.m.20 views

CVE-2023-50096

STMicroelectronics STSAFE-A1xx middleware before 3.3.7 allows MCU code execution if an adversary has the ability to read from and write to the I2C bus. This is caused by an StSafeAReceiveBytes buffer overflow in the X-CUBE-SAFEA1 Software Package for STSAFE-A sample applications 1.2.0, and thus c...

7.8AI score0.00419EPSS
Exploits3References1
Positive Technologies
Positive Technologiesadded 2024/01/01 12:0 a.m.5 views

PT-2024-13860 · Stmicroelectronics · Stsafe-A1Xx +1

Name of the Vulnerable Software and Affected Versions: STMicroelectronics STSAFE-A1xx versions prior to 3.3.7 X-CUBE-SAFEA1 Software Package for STSAFE-A sample applications version 1.2.0 Description: The issue allows MCU code execution if an adversary has the ability to read from and write to th...

7.5CVSS8.2AI score0.00419EPSS
Exploits3References8
CNNVD
CNNVDadded 2024/01/01 12:0 a.m.4 views

STMicroelectronics STSAFE-A1xx Security Vulnerability

STMicroelectronics STSAFE-A1xx is a middleware from STMicroelectronics, Switzerland. A security vulnerability exists in STMicroelectronics STSAFE-A1xx versions prior to 3.3.7, which is caused by a buffer overflow in StSafeAReceiveBytes in the X-CUBE-SAFEA1 package, which allows execution of MCU...

7.5CVSS7.5AI score0.00419EPSS
Exploits3References2
Cvelist
Cvelistadded 2024/01/01 12:0 a.m.12 views

CVE-2023-50096

STMicroelectronics STSAFE-A1xx middleware before 3.3.7 allows MCU code execution if an adversary has the ability to read from and write to the I2C bus. This is caused by an StSafeAReceiveBytes buffer overflow in the X-CUBE-SAFEA1 Software Package for STSAFE-A sample applications 1.2.0, and thus c...

8.1AI score0.00419EPSS
Exploits3References1
Rows per page
Query Builder