21 matches found
Exploit for CVE-2026-29000
Lab Demo CVE-2026-29000: pac4j-jwt Authentication Bypass Môi...
EUVD-2012-5959
Malware in sbrugna...
EUVD-2020-7928
Malware in sbrugna...
EUVD-2013-2110
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2019-10181
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - It was found that in icedtea-web up to and including 1.7.2 and 1.8.2 executable code could be injected in a JAR file without compromising the signature...
CVE-2021-25395
A race condition in MFC charger driver prior to SMR MAY-2021 Release 1 allows local attackers to bypass signature check given a radio privilege is compromised...
CVE-2020-0204
In InstallPackage of package.cpp, there is a possible bypass of a signature check due to a Time of Check/Time of Use condition. This could lead to local escalation of privilege by allowing a bypass of the initial zip file signature check for an OS update with no additional execution privileges...
CVE-2015-7336
MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. A vulnerability was reported fixed and publicly disclosed in 2015 in Lenovo System Update version 5.07.0008 and prior that could allow the signature check of an update to be bypassed...
CVE-2023-26244
An issue was discovered in the Hyundai Gen5WL in-vehicle infotainment system AEEPEEUR.S5WL001.001.211214. The AppDMClient binary file, which is used during the firmware installation process, can be modified by an attacker to bypass the digital signature check of AppUpgrade and .lge.upgrade.xml...
CVE-2022-2484
The signature check in the Nokia ASIK AirScale system module version 474021A.101 can be bypassed allowing an attacker to run modified firmware. This could result in the execution of a malicious kernel, arbitrary programs, or modified Nokia programs...
CVE-2022-2484
The vulnerability CVE-2022-2484 affects Nokia ASIK AirScale system module version 474021A.101. The Red Hat/CISA/NVD records describe a bypass of the module’s signature check, enabling an attacker to run modified firmware, which could lead to execution of a malicious kernel, arbitrary programs, or...
Nokia ASIK AirScale 5G Common System Module 安全漏洞
The Nokia ASIK AirScale 5G Common System Module is a common system unit from Nokia, Finland. A security vulnerability exists in Nokia ASIK AirScale 5G Common System Module version 474021A.101, which stems from a signature check that can be bypassed to allow an attacker to run modified firmware...
CVE-2022-22819
NXP LPC55S66JBD64, LPC55S66JBD100, LPC55S66JEV98, LPC55S69JBD64, LPC55S69JBD100, and LPC55S69JEV98 microcontrollers ROM version 1B have a buffer overflow in parsing SB2 updates before the signature is verified. This can allow an attacker to achieve non-persistent code execution via a crafted...
Microsoft Azure Sphere Security Monitor SMSyscallStageBaseManifests image validation signature check bypass vulnerability
Summary A signature check bypass vulnerability exists in the Security Monitor SMSyscallStageBaseManifests image validation functionality of Microsoft Azure Sphere 21.01. A specially crafted manifest can lead to a firmware downgrade. An attacker can use syscalls to trigger this vulnerability. Test...
CVE-2020-0204
In InstallPackage of package.cpp, there is a possible bypass of a signature check due to a Time of Check/Time of Use condition. This could lead to local escalation of privilege by allowing a bypass of the initial zip file signature check for an OS update with no additional execution privileges...
CVE-2015-7336
MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. A vulnerability was reported fixed and publicly disclosed in 2015 in Lenovo System Update version 5.07.0008 and prior that could allow the signature check of an update to be bypassed...
CVE-2019-3969
CVE-2019-3969 – Comodo Antivirus Local Privilege Escalation : Affected product: Comodo Antivirus versions up to 12.0.0.6810. Root cause: CmdAgent’s handling of COM clients allows a local process to bypass CmdAgent’s signature check via process hollowing, enabling invocation of sensitive COM metho...
openSUSE: Security Advisory for ceph (openSUSE-SU-2019:1284-1)
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
OPENSUSE-SU-2019:1284-1 Security update for ceph
This update for ceph version 13.2.4 fixes the following issues: Security issues fixed: - CVE-2018-14662: Fixed an issue with LUKS 'config-key' safety bsc1111177 - CVE-2018-10861: Fixed an authorization bypass on OSD pool ops in ceph-mon bsc1099162 - CVE-2018-1128: Fixed signature check bypass in...
CVE-2014-5300
The CVE-2014-5300 flaw affects Adaptive Computing Moab prior to 7.2.9 and Moab 8 prior to 8.0.0, where authentication can be bypassed by a message without a valid , allowing impersonation of arbitrary users and remote command execution. Root cause: the Moab server does not properly authenticate r...