219 matches found
CompuLab Intense PC and MintBox 2 BIOS Privilege Vulnerability
The CompuLab Intense PC and MintBox 2 are both mini-PC devices from CompuLab Israel. the BIOS is a ROM on-chip application. A BIOS privilege vulnerability exists in CompuLab Intense PC and MintBox 2 using versions of BIOS prior to 2017-05-21, which stems from the program's failure to apply write...
Will Tiger uRouter wireless router discovered multiple security vulnerabilities-vulnerability warning-the black bar safety net
A long story short Will Tiger uRouter wireless router is a by the Chinese will Tiger technology production and sales of enterprise class intelligent routing products. It looks impeccable, but it did not do pretty and intelligent-because this device is the presence of multiple serious security...
Fedora 24 : kernel (2016-9a16b2e14e)
Update to latest upstream stable release, Linux v4.6.4 For those with Skylake CPUs, please note that there may be instability with a recent microcode update. Read https://www.happyassassin.net/2016/07/07/psa-failure-to-boot-after-ker nel-update-on-skylake-systems/ and look for a system firmware...
Configuration Bypass During S3 Resume
Summary: System firmware of certain products does not completely protect platform configuration data. Description: During resume from sleep, system firmware needs to reinitialize hardware to a secured configuration. In order to protect against malware that has already compromised an OS, firmware...
CVE-2015-5611
CVE-2015-5611 covers a missing authentication vulnerability in FCA Uconnect infotainment systems (Uconnect 8.4AN/RA3/RA4) used in 2013–2015 FCA vehicles. The root cause is unauthenticated access allowing remote commands via the entertainment-system firmware and CAN bus due to insufficient Radio s...
UEFI EDK2 Capsule Update vulnerabilities
Overview The EDK2 UEFI reference implementation contains multiple vulnerabilities in the Capsule Update mechanism. Description The open source EDK2 project provides a reference implementation of the Unified Extensible Firmware Interface UEFI. Researchers at The MITRE Corporation have discovered...
CVE-2013-5781
Unspecified vulnerability in Oracle PARC Enterprise T4 Servers running Sun System Firmware before 8.3.0.b allows local users to affect confidentiality, integrity, and availability via vectors related to Sun System Firmware/Integrated Lights Out Manager ILOM...
Design/Logic Flaw
Unspecified vulnerability in Oracle SPARC Enterprise T & M Series Servers running Sun System Firmware before 6.7.13 for SPARC T1, 7.4.6.c for SPARC T2, 8.3.0.b for SPARC T3 & T4, 9.0.0.d for SPARC T5 and 9.0.1.e for SPARC M5 allows local users to affect availability via unknown vectors related to...
CVE-2013-3838
Unspecified vulnerability in Oracle SPARC Enterprise T & M Series Servers running Sun System Firmware before 6.7.13 for SPARC T1, 7.4.6.c for SPARC T2, 8.3.0.b for SPARC T3 & T4, 9.0.0.d for SPARC T5 and 9.0.1.e for SPARC M5 allows local users to affect availability via unknown vectors related to...
Design/Logic Flaw
Unspecified vulnerability in Oracle PARC Enterprise T4 Servers running Sun System Firmware before 8.3.0.b allows local users to affect confidentiality, integrity, and availability via vectors related to Sun System Firmware/Integrated Lights Out Manager ILOM...
CVE-2013-5781
Unspecified vulnerability in Oracle PARC Enterprise T4 Servers running Sun System Firmware before 8.3.0.b allows local users to affect confidentiality, integrity, and availability via vectors related to Sun System Firmware/Integrated Lights Out Manager ILOM...
CVE-2013-5781
CVE-2013-5781 affects Oracle PARC Enterprise T4 Servers running Sun System Firmware prior to 8.3.0.b. Local users can impact confidentiality, integrity, and availability via vectors related to Sun System Firmware/Integrated Lights Out Manager (ILOM). The description and related sources consistent...
CVE-2013-3838
CVE-2013-3838 describes an unspecified vulnerability in Oracle SPARC Enterprise T&M Series servers, affecting Sun System Firmware versions across SPARC T1–T5 and M5 and related hypervisor components. The vulnerability allows local users to impact availability via unknown vectors; the Exactly affe...
CVE-2012-3128
Unspecified vulnerability in Oracle SPARC T-Series Servers running System Firmware 8.2.0 and 8.1.4.e or earlier allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Integrated Lights Out Manager...
Design/Logic Flaw
Unspecified vulnerability in Oracle SPARC T-Series Servers running System Firmware 8.2.0 and 8.1.4.e or earlier allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Integrated Lights Out Manager...
CVE-2012-3128
CVE-2012-3128 affects Oracle SPARC T-Series Servers running System Firmware 8.2.0 and 8.1.4.e or earlier. The vulnerability is related to the Integrated Lights Out Manager and allows local users to impact confidentiality, integrity, and availability via unknown vectors. The NVD entry lists a LOW ...
CVE-2012-3128
Unspecified vulnerability in Oracle SPARC T-Series Servers running System Firmware 8.2.0 and 8.1.4.e or earlier allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Integrated Lights Out Manager...
CVE-2008-4992
The SPARC hypervisor in Sun System Firmware 6.6.3 through 6.6.5 and 7.1.3 through 7.1.3.e on UltraSPARC T1, T2, and T2+ processors allows logical domain users to access memory in other logical domains via unknown vectors...
CVE-2008-4992
The CVE-2008-4992 entry concerns the SPARC hypervisor in Sun System Firmware running on UltraSPARC T1/T2/T2+ (Sun System Firmware 6.6.3–6.6.5 and 7.1.3–7.1.3.e). The vulnerability allows logical-domain users to access memory in other logical domains via unknown vectors, indicating a cross-domain ...