Lucene search
+L

423 matches found

osv
osv
added 2021/08/08 8:15 p.m.4 views

UBUNTU-CVE-2021-38205

drivers/net/ethernet/xilinx/xilinxemaclite.c in the Linux kernel before 5.13.3 makes it easier for attackers to defeat an ASLR protection mechanism because it prints a kernel pointer i.e., the real IOMEM pointer...

3.3CVSS6.7AI score0.00328EPSS
Exploits0References12
osv
osv
added 2021/08/08 8:15 p.m.3 views

UBUNTU-CVE-2021-38207

drivers/net/ethernet/xilinx/lltemacmain.c in the Linux kernel before 5.12.13 allows remote attackers to cause a denial of service buffer overflow and lockup by sending heavy network traffic for about ten minutes...

7.5CVSS6.8AI score0.03354EPSS
Exploits0References6
ubuntucve
ubuntucve
added 2021/08/08 8:15 p.m.34 views

CVE-2021-38207

drivers/net/ethernet/xilinx/lltemacmain.c in the Linux kernel before 5.12.13 allows remote attackers to cause a denial of service buffer overflow and lockup by sending heavy network traffic for about ten minutes...

7.5CVSS6.8AI score0.03354EPSS
Exploits0References5
ubuntucve
ubuntucve
added 2021/08/08 8:15 p.m.30 views

CVE-2021-38205

drivers/net/ethernet/xilinx/xilinxemaclite.c in the Linux kernel before 5.13.3 makes it easier for attackers to defeat an ASLR protection mechanism because it prints a kernel pointer i.e., the real IOMEM pointer...

3.3CVSS6.8AI score0.00328EPSS
Exploits0References11
cve
cve
added 2021/08/08 7:23 p.m.303 views

CVE-2021-38205

CVE-2021-38205 affects the xilinx_emaclite driver in the Linux kernel. The vulnerability arises because the driver prints a real IOMEM/kernel pointer, which can aid attackers in bypassing ASLR and facilitate information disclosure. Affected state is Linux kernels before 5.13.3; remediation is to ...

3.3CVSS5.2AI score0.00328EPSS
Exploits0References4Affected Software1
osv
osv
added 2021/08/03 1:42 a.m.11 views

UVI-2021-1001228 net: xilinx_emaclite: Do not print real IOMEM pointer

net: xilinxemaclite: Do not print real IOMEM pointer This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.13.3 by commit...

7.2AI score
Exploits0
osv
osv
added 2021/05/31 3:39 p.m.11 views

GSD-2021-1000266 drm: xlnx: zynqmp: fix a memset in zynqmp_dp_train()

drm: xlnx: zynqmp: fix a memset in zynqmpdptrain This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.4 by commit...

7.2AI score
Exploits0
cnnvd
cnnvd
added 2021/03/15 12:0 a.m.3 views

Xilinx Zynq-7000 安全特征问题漏洞

The Xilinx Zynq-7000 is a chip from Xilinx, Inc. The Zynq-7000 is a chip from Xilinx, Inc. that provides the software programmability of an ARM® architecture processor with the hardware programmability of an FPGA, enabling critical analysis and hardware acceleration while integrating a CPU, DSP,...

6.8CVSS6.7AI score0.00379EPSS
Exploits0References4
bdu_fstec
bdu_fstec
added 2020/04/23 12:0 a.m.11 views

The vulnerability of the programmable user-programmable gate array (PPVM) for Xilinx Spartan, Artix, Kintex, and Virtex programmable integrated circuits lies in the possibility of intercepting/mocking the file containing the encrypted control bitstream, allowing a hacker to gain full control over the programmable integrated circuits.

The vulnerability of the programmable user-programmable gate array PPVM for Xilinx Spartan, Artix, Kintex, and Virtex programmable logic integrated circuits lies in the ability to intercept or replace the file containing the encrypted control bitstream. Exploiting this vulnerability can allow an...

9CVSS5.5AI score
Exploits0References4Affected Software4
thn
thn
added 2020/04/21 9:55 a.m.108 views

Unpatchable 'Starbleed' Bug in FPGA Chips Exposes Critical Devices to Hackers

A newly discovered unpatchable hardware vulnerability in Xilinx programmable logic products could allow an attacker to break bitstream encryption, and clone intellectual property, change the functionality, and even implant hardware Trojans. The details of the attacks against Xilinx 7-Series and...

0.5AI score
Exploits0
thn
thn
added 2020/04/21 9:55 a.m.6 views

Unpatchable 'Starbleed' Bug in FPGA Chips Exposes Critical Devices to Hackers

A newly discovered unpatchable hardware vulnerability in Xilinx programmable logic products could allow an attacker to break bitstream encryption, and clone intellectual property, change the functionality, and even implant hardware Trojans. The details of the attacks against Xilinx 7-Series and...

5.9AI score
Exploits0
ptsecurity
ptsecurity
added 2019/09/03 12:0 a.m.15 views

PT-2019-17698 · Xilinx · Xilinx Zynq Ultrascale+

Name of the Vulnerable Software and Affected Versions: Xilinx Zynq UltraScale+ devices affected versions not specified Description: A weakness was found in the Encrypt Only boot mode, which could allow an adversary to modify the control fields of the boot image. This modification could lead to...

5.5CVSS6.9AI score0.00249EPSS
Exploits0References3
bdu_fstec
bdu_fstec
added 2019/06/27 12:0 a.m.18 views

The vulnerability of the xudc_ep_enable handler implementation in Linux kernel allows a hacker to write data into the memory space of the operating system.

The vulnerability in the implementation of the xudcepenable handler of the loaded module in the drivers/usb/gadget/udc/udc-xilinx.ko kernel of the Linux operating system arises due to an out-of-bounds array access. Exploiting this vulnerability allows an attacker to write data into an unauthorize...

6.2CVSS5.5AI score
Exploits0Affected Software1
openbugbounty
openbugbounty
added 2018/01/05 5:53 p.m.11 views

xilinx.com XSS vulnerability

Open Bug Bounty ID: OBB-488553 Description| Value ---|--- Affected Website:| xilinx.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score
Exploits0
threatpost
threatpost
added 2017/11/06 1:15 p.m.25 views

US-CERT Warns of Crypto Bugs in IEEE Standard

Recent academic work focused on weak cryptographic protections in the implementation of the IEEE P1735 standard has been escalated to an alert published Friday by the Department of Homeland Security. DHS’ US-CERT warned the IEEE P1735 standard for encrypting electronic-design intellectual propert...

4.6CVSS7.5AI score0.00455EPSS
Exploits0References12
openbugbounty
openbugbounty
added 2016/11/18 3:8 p.m.9 views

xilinx.com XSS vulnerability

Vulnerable URL: https://www.xilinx.com/alliance/member-keyword-search.html?searchKeywords="// Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 17562 VIP website status:| Yes Check xilinx.com SSL connection:| Grade...

6.3AI score
Exploits0
cnvd
cnvd
added 2016/09/28 12:0 a.m.5 views

QEMU 'xilinx_ethlite.c' heap buffer overflow vulnerability

QEMU is a simulation processor software developed by French programmer Fabrice Bellard. The software is fast and cross-platform. QEMU 'xilinxethlite.c' suffers from a heap buffer overflow vulnerability that allows an attacker to exploit the vulnerability to execute arbitrary code on the host, a...

10CVSS9.5AI score0.06063EPSS
Exploits0References1
nvd
nvd
added 2010/03/05 7:30 p.m.23 views

CVE-2010-0928

OpenSSL 0.9.8i on the Gaisler Research LEON3 SoC on the Xilinx Virtex-II Pro FPGA uses a Fixed Width Exponentiation FWE algorithm for certain signature calculations, and does not verify the signature before providing it to a caller, which makes it easier for physically proximate attackers to...

4CVSS6.3AI score0.00515EPSS
Exploits0References6
ubuntucve
ubuntucve
added 2010/03/05 7:30 p.m.44 views

CVE-2010-0928

OpenSSL 0.9.8i on the Gaisler Research LEON3 SoC on the Xilinx Virtex-II Pro FPGA uses a Fixed Width Exponentiation FWE algorithm for certain signature calculations, and does not verify the signature before providing it to a caller, which makes it easier for physically proximate attackers to...

4CVSS7.2AI score0.00515EPSS
Exploits0References1
osv
osv
added 2010/03/05 7:30 p.m.11 views

CVE-2010-0928

OpenSSL 0.9.8i on the Gaisler Research LEON3 SoC on the Xilinx Virtex-II Pro FPGA uses a Fixed Width Exponentiation FWE algorithm for certain signature calculations, and does not verify the signature before providing it to a caller, which makes it easier for physically proximate attackers to...

6.6AI score
Exploits0References6
Rows per page
Query Builder