Lucene search
K

3605 matches found

NVD
NVD
added 2018/10/05 2:29 p.m.15 views

CVE-2018-15370

A vulnerability in Cisco IOS ROM Monitor ROMMON Software for Cisco Catalyst 6800 Series Switches could allow an unauthenticated, local attacker to bypass Cisco Secure Boot validation checks and load a compromised software image on an affected device. The vulnerability is due to the presence of a...

6.8CVSS6.7AI score0.00361EPSS
Exploits0References2
OSV
OSV
added 2018/10/05 2:29 p.m.5 views

CVE-2018-15370

A vulnerability in Cisco IOS ROM Monitor ROMMON Software for Cisco Catalyst 6800 Series Switches could allow an unauthenticated, local attacker to bypass Cisco Secure Boot validation checks and load a compromised software image on an affected device. The vulnerability is due to the presence of a...

6.8CVSS5.8AI score0.00361EPSS
Exploits0References2
Prion
Prion
added 2018/10/05 2:29 p.m.17 views

Input validation

A vulnerability in Cisco IOS ROM Monitor ROMMON Software for Cisco Catalyst 6800 Series Switches could allow an unauthenticated, local attacker to bypass Cisco Secure Boot validation checks and load a compromised software image on an affected device. The vulnerability is due to the presence of a...

4.6CVSS6.6AI score0.00361EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2018/10/05 2:0 p.m.8 views

CVE-2018-15370 Cisco Catalyst 6800 Series Switches ROM Monitor Software Secure Boot Bypass Vulnerability

A vulnerability in Cisco IOS ROM Monitor ROMMON Software for Cisco Catalyst 6800 Series Switches could allow an unauthenticated, local attacker to bypass Cisco Secure Boot validation checks and load a compromised software image on an affected device. The vulnerability is due to the presence of a...

6.8AI score0.00361EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/10/05 2:0 p.m.22 views

CVE-2018-15370 Cisco Catalyst 6800 Series Switches ROM Monitor Software Secure Boot Bypass Vulnerability

A vulnerability in Cisco IOS ROM Monitor ROMMON Software for Cisco Catalyst 6800 Series Switches could allow an unauthenticated, local attacker to bypass Cisco Secure Boot validation checks and load a compromised software image on an affected device. The vulnerability is due to the presence of a...

6.7AI score0.00361EPSS
Exploits0References2
CVE
CVE
added 2018/10/05 2:0 p.m.68 views

CVE-2018-15370

CVE-2018-15370 affects Cisco IOS ROM Monitor (ROMMON) on Catalyst 6800 Series switches. A hidden command in ROMMON enables an unauthenticated, local attacker to force the device into ROMMON mode via the console and write a malicious pattern to a memory address, bypassing Cisco Secure Boot signatu...

6.8CVSS6.6AI score0.00361EPSS
Exploits0References2Affected Software1
Malwarebytes
Malwarebytes
added 2018/10/04 3:0 p.m.52 views

LoJack for computers used to attack European government bodies

Security researchers have detected the first known instance of a UEFI bootkit being used in targeted campaigns against government entities across Central and Eastern Europe. The attack focuses on UFEI-enabled computers and relies on a persistence mechanism that has been stolen from a legitimate,...

1.4AI score
Exploits0
CNVD
CNVD
added 2018/09/29 12:0 a.m.2 views

Local Security Bypass Vulnerability in IOS ROM Monitor Software for Multiple Cisco Products

Cisco Catalyst 6800 Series Supervisor Engine 6T and others are switch products from Cisco USA. the IOS ROM Monitor ROMMON Software is one of the set of ROM monitoring software for iOS devices. A privilege license and access control vulnerability exists in IOS ROMMON Software in multiple Cisco...

6.8CVSS6.6AI score0.00361EPSS
Exploits0References1
Cisco
Cisco
added 2018/09/26 4:0 p.m.35 views

Cisco Catalyst 6800 Series Switches ROM Monitor Software Secure Boot Bypass Vulnerability

A vulnerability in Cisco IOS ROM Monitor ROMMON Software for Cisco Catalyst 6800 Series Switches could allow an unauthenticated, local attacker to bypass Cisco Secure Boot validation checks and load a compromised software image on an affected device. The vulnerability is due to the presence of a...

6.4CVSS2.1AI score0.00361EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2018/09/13 12:0 a.m.10 views

Microsoft Windows: Turn On Virtualization Based Security (Select Platform Security Level)

Specifies whether Virtualization Based Security is enabled. Virtualization Based Security uses the Windows Hypervisor to provide support for security services. Virtualization Based Security requires Secure Boot, and can optionally be enabled with the use of DMA Protections. DMA protections requir...

7.3AI score
Exploits0References1
OpenVAS
OpenVAS
added 2018/09/13 12:0 a.m.11 views

Microsoft Windows: Turn On Virtualization Based Security (Credential Guard Configuration)

Specifies whether Virtualization Based Security is enabled. Virtualization Based Security uses the Windows Hypervisor to provide support for security services. Virtualization Based Security requires Secure Boot, and can optionally be enabled with the use of DMA Protections. DMA protections requir...

7.3AI score
Exploits0References2
Kitploit
Kitploit
added 2018/09/04 9:5 p.m.94 views

R0Ak (The Ring 0 Army Knife) - A Command Line Utility To Read/Write/Execute Ring Zero On For Windows 10 Systems

r0ak is a Windows command-line utility that enables you to easily read, write, and execute kernel-mode code with some limitations from the command prompt, without requiring anything else other than Administrator privileges. Quick Peek r0ak v1.0.0 -- Ring 0 Army Knife...

7.5AI score
Exploits0References1
n0where
n0where
added 2018/08/22 5:9 p.m.18 views

Ring 0 Army Knife: r0ak

r0ak is a Windows command-line utility that enables you to easily read, write, and execute kernel-mode code with some limitations from the command prompt, without requiring anything else other than Administrator privileges. Motivation The Windows kernel is a rich environment in which hundreds of...

7.5AI score
Exploits0References1
Hewlett-Packard
Hewlett-Packard
added 2018/07/06 12:0 a.m.36 views

HPSBHF03586 rev. 1 - DCI Policy Update

Potential Security Impact Information disclosure and escalation of privilege via limited physical presence. Source: HP, HP Product Security Response Team PSRT Reported by: Intel VULNERABILITY SUMMARY Intel platforms, starting with Skylake, support a USB 3-based debugging interface a.k.a. Direct...

7.6CVSS0.5AI score0.00364EPSS
Exploits0
CNVD
CNVD
added 2018/07/03 12:0 a.m.3 views

Unspecified Vulnerability in ECOS Secure Boot Stick

The ECOS Secure Boot Stick a.k.a. SBS is a security device from ECOS TECHNOLOGY, Germany for remote access to Citrix, Microsoft Terminal Server, VMware and other web applications. A security vulnerability exists in ECOS SBS version 5.6.5 that stems from an undocumented vendor backdoor in the...

10CVSS9.2AI score0.01535EPSS
Exploits0References1
CNVD
CNVD
added 2018/07/03 12:0 a.m.3 views

ECOS Secure Boot Stick Fuzzing Vulnerability

The ECOS Secure Boot Stick a.k.a. SBS is a security device from ECOS TECHNOLOGY, Germany for remote access to Citrix, Microsoft Terminal Server, VMware and other web applications. A security vulnerability exists in ECOS SBS version 5.6.5. An attacker can exploit the vulnerability to extract the...

4.6CVSS5AI score0.00344EPSS
Exploits0References1
CNVD
CNVD
added 2018/07/03 12:0 a.m.2 views

ECOS Secure Boot Stick Authentication Bypass Vulnerability

The ECOS Secure Boot Stick a.k.a. SBS is a security device from ECOS TECHNOLOGY, Germany for remote access to Citrix, Microsoft Terminal Server, VMware and other web applications. A security vulnerability exists in ECOS SBS version 5.6.5. An attacker could exploit the vulnerability to bypass...

5.9CVSS5.8AI score0.00885EPSS
Exploits0References1
CNVD
CNVD
added 2018/07/03 12:0 a.m.3 views

Unspecified Vulnerability in ECOS Secure Boot Stick (CNVD-2019-38286)

The ECOS Secure Boot Stick a.k.a. SBS is a security device from ECOS TECHNOLOGY, Germany for remote access to Citrix, Microsoft Terminal Server, VMware and other web applications. A security vulnerability exists in ECOS SBS version 5.6.5, which stems from the program not adequately verifying the...

8.1CVSS8.1AI score0.00428EPSS
Exploits0References1
CNVD
CNVD
added 2018/07/03 12:0 a.m.3 views

Unspecified Vulnerability in ECOS Secure Boot Stick (CNVD-2019-38284)

The ECOS Secure Boot Stick a.k.a. SBS is a security device from ECOS TECHNOLOGY, Germany for remote access to Citrix, Microsoft Terminal Server, VMware and other web applications. A security vulnerability exists in ECOS SBS version 5.6.5. An attacker could exploit the vulnerability to take contro...

7.5CVSS7.7AI score0.00566EPSS
Exploits0References1
CNVD
CNVD
added 2018/07/03 12:0 a.m.4 views

Unspecified Vulnerability in ECOS Secure Boot Stick

The ECOS Secure Boot Stick a.k.a. SBS is a security device from ECOS TECHNOLOGY, Germany for remote access to Citrix, Microsoft Terminal Server, VMware and other web applications. A security vulnerability exists in ECOS SBS version 5.6.5. An attacker could exploit the vulnerability to take contro...

8.5CVSS8.2AI score0.00805EPSS
Exploits0References1
Rows per page
Query Builder