Lucene search
K

3605 matches found

Tenable Nessus
Tenable Nessus
added 2020/02/11 12:0 a.m.139 views

KB4537764: Windows 10 Version 1607 and Windows Server 2016 February 2020 Security Update

The remote Windows host is missing security update 4537764. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could...

9.3CVSS8.1AI score0.86863EPSS
Exploits30References75
Tenable Nessus
Tenable Nessus
added 2020/02/11 12:0 a.m.74 views

KB4532691: Windows 10 Version 1809 and Windows Server 2019 February 2020 Security Update

The remote Windows host is missing security update 4532691. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server. An attacker who successfully exploited this...

9.3CVSS8.2AI score0.86863EPSS
Exploits30References85
NVD
NVD
added 2020/01/30 9:15 p.m.24 views

CVE-2015-0949

The System Management Mode SMM implementation in Dell Latitude E6430 BIOS Revision A09, HP EliteBook 850 G1 BIOS revision L71 Ver. 01.09, and possibly other BIOS implementations does not ensure that function calls operate on SMRAM memory locations, which allows local users to bypass the Secure Bo...

7.8CVSS7.5AI score0.00394EPSS
Exploits0References1
Prion
Prion
added 2020/01/30 9:15 p.m.16 views

Design/Logic Flaw

The System Management Mode SMM implementation in Dell Latitude E6430 BIOS Revision A09, HP EliteBook 850 G1 BIOS revision L71 Ver. 01.09, and possibly other BIOS implementations does not ensure that function calls operate on SMRAM memory locations, which allows local users to bypass the Secure Bo...

4.6CVSS6.9AI score0.00394EPSS
Exploits0References1Affected Software2
CVE
CVE
added 2020/01/30 8:45 p.m.82 views

CVE-2015-0949

CVE-2015-0949 pertains to SMM (System Management Mode) call-outs that may run outside SMRAM in certain BIOS implementations (Dell Latitude E6430 A09, HP EliteBook 850 G1 L71 Ver. 01.09, and potentially others). Root cause: SMM code does not ensure function calls operate on SMRAM memory locations,...

7.8CVSS7.4AI score0.00394EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/01/30 8:45 p.m.22 views

CVE-2015-0949

The System Management Mode SMM implementation in Dell Latitude E6430 BIOS Revision A09, HP EliteBook 850 G1 BIOS revision L71 Ver. 01.09, and possibly other BIOS implementations does not ensure that function calls operate on SMRAM memory locations, which allows local users to bypass the Secure Bo...

7.5AI score0.00394EPSS
Exploits0References1
Prion
Prion
added 2020/01/21 7:15 a.m.20 views

Improper access control

Locked regions may be modified through other interfaces in secure boot loader image due to improper access control. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networkin...

7.2CVSS8.2AI score0.0022EPSS
Exploits0References1
CVE
CVE
added 2020/01/21 6:30 a.m.95 views

CVE-2019-2267

Summary: CVE-2019-2267 affects Qualcomm closed‑source components in Snapdragon platforms (Auto, Compute, Connectivity, Mobile, etc.). The issue is caused by improper access control that allows locked regions to be modified via other interfaces in the secure boot loader image. This could impact bo...

7.8CVSS8.2AI score0.0022EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/01/21 6:30 a.m.23 views

CVE-2019-2267

Locked regions may be modified through other interfaces in secure boot loader image due to improper access control. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networkin...

8.3AI score0.0022EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2019/12/13 12:0 a.m.9 views

SYS.1.2.2.A8

Ziel des Bausteins SYS.1.2.2 ist die Absicherung von Microsoft Windows Server 2012 und Microsoft Windows Server 2012 R2. Die Standard-Anforderung Copyright C 2019 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify...

7.3AI score
Exploits0References1
Cvelist
Cvelist
added 2019/11/14 8:34 p.m.20 views

CVE-2019-17391

An issue was discovered in the Espressif ESP32 mask ROM code 2016-06-08 0 through 2. Lack of anti-glitch mitigations in the first stage bootloader of the ESP32 chip allows an attacker with physical access to the device to read the contents of read-protected eFuses, such as flash encryption and...

4.6AI score0.00245EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2019/11/14 12:0 a.m.5 views

PT-2019-6219 · Espressif · Esp32

Name of the Vulnerable Software and Affected Versions: Espressif ESP32 mask ROM code versions 2016-06-08 0 through 2 Description: The issue is related to the lack of anti-glitch mitigations in the first stage bootloader of the ESP32 chip, allowing an attacker with physical access to the device to...

4.9CVSS6.7AI score0.00245EPSS
Exploits0References5
Microsoft KB
Microsoft KB
added 2019/11/12 12:0 a.m.164 views

Servicing stack update for Windows 8.1, RT 8.1, and Server 2012 R2: October 8, 2019

Servicing stack update for Windows 8.1, RT 8.1, and Server 2012 R2: October 8, 2019 Summary This update makes quality improvements to the servicing stack, which is the component that installs Windows updates. Key changes include the following: Improves the Secure Boot revocation list DBX update...

6.7AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2019/11/04 12:0 a.m.3 views

The vulnerability in the implementation of the Secure Boot protocol for operating systems with Windows, which allows a perpetrator to disclose protected information

The vulnerability of the Secure Boot protocol for loading operating systems on Windows is related to errors in accessing debugging functions during the loading process. Exploiting this vulnerability can allow an attacker to disclose sensitive information that is protected by the security measures...

6.2CVSS5.4AI score0.01261EPSS
Exploits0References3
OSV
OSV
added 2019/10/10 2:15 p.m.2 views

CVE-2019-1368

A security feature bypass exists when Windows Secure Boot improperly restricts access to debugging functionality, aka 'Windows Secure Boot Security Feature Bypass Vulnerability'...

4.6CVSS5.8AI score0.01261EPSS
Exploits0References1
NVD
NVD
added 2019/10/10 2:15 p.m.15 views

CVE-2019-1368

A security feature bypass exists when Windows Secure Boot improperly restricts access to debugging functionality, aka 'Windows Secure Boot Security Feature Bypass Vulnerability'...

4.6CVSS4.6AI score0.01261EPSS
Exploits0References1
Prion
Prion
added 2019/10/10 2:15 p.m.13 views

Security feature bypass

A security feature bypass exists when Windows Secure Boot improperly restricts access to debugging functionality, aka 'Windows Secure Boot Security Feature Bypass Vulnerability'...

2.1CVSS5AI score0.01261EPSS
Exploits0References1Affected Software2
CVE
CVE
added 2019/10/10 1:28 p.m.87 views

CVE-2019-1368

CVE-2019-1368 describes a security feature bypass where Windows Secure Boot improperly restricts access to debugging functionality, potentially enabling an attacker to access protected kernel memory. Connected documents corroborate the vulnerability name and general context but do not provide exp...

4.6CVSS6.5AI score0.01261EPSS
Exploits0References1Affected Software3
Cvelist
Cvelist
added 2019/10/10 1:28 p.m.21 views

CVE-2019-1368

A security feature bypass exists when Windows Secure Boot improperly restricts access to debugging functionality, aka 'Windows Secure Boot Security Feature Bypass Vulnerability'...

6.7AI score0.01261EPSS
Exploits0References1
CNVD
CNVD
added 2019/10/10 12:0 a.m.2 views

Microsoft Windows Secure Boot Security Feature Bypass Vulnerability

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation, U.S.A. Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. Windows Secure Boot is one of the secure boot components. A security feature bypas...

4.6CVSS6.9AI score0.01261EPSS
Exploits0References1
Rows per page
Query Builder