CVE-2017-3225

CVE-2017-3225 concerns Das U-Boot, a device bootloader that reads configuration from an AES-CBC encrypted file. The vulnerability stems from U-Boot using a zero initialization vector (IV) in AES-CBC, which enables dictionary-like attacks on encrypted data to learn information about the ciphertext...

Google Android Qualcomm bootloader information disclosure vulnerability (CNVD-2018-17505)

Android on Google Pixel and Nexus is an open source Linux-based operating system for the Google Pixel and Nexus smartphones developed by Google and the Open Handset Alliance OHA.Qualcomm Bootloader is a bootloader developed by Qualcomm using the Qualcomm Bootloader is a bootloader developed by...

Android Qualcom bootloader information disclosure vulnerability

Android on Google Pixel and Nexus is an open source Linux-based operating system for the Google Pixel and Nexus smartphones developed by Google and the Open Handset Alliance OHA.Qualcomm Bootloader is a bootloader developed by Qualcomm using the Qualcomm Bootloader is a bootloader developed by...

Google Android Qualcomm Bootloader Buffer Overflow Vulnerability

Android on Google Pixel and Nexus is an open source Linux-based operating system for the Google Pixel and Nexus smartphones developed by Google and the Open Handset Alliance OHA.Qualcomm Bootloader is a bootloader developed by Qualcomm using the Qualcomm Bootloader is a bootloader developed by...

DENX Software Engineering U-Boot Input Validation Vulnerability

DENX Software Engineering U-Boot is a bootloader from DENX Software Engineering, Germany, that can read device configuration from AES encrypted files. An input validation vulnerability exists in the Verified boot signature verification in DENX Software Engineering U-Boot. An attacker could exploi...

Bootloader vulnerability in OnePlus 6 lets an attacker take control of the device

By Waqas An IT security researcher has discovered a critical vulnerability in OnePlus This is a post from HackRead.com Read the original post: Bootloader vulnerability in OnePlus 6 lets an attacker take control of the device...

OnePlus 6 Flaw Allows to Boot Any Image Even With Locked Bootloader

Have you recently bought a OnePlus 6? Don't leave your phone unattended. A serious vulnerability has been discovered in the OnePlus 6 bootloader that makes it possible for someone to boot arbitrary or modified images to take full admin control of your phone—even if the bootloader is locked. A...

OnePlus 6 Flaw Allows to Boot Any Image Even With Locked Bootloader

Have you recently bought a OnePlus 6? Don't leave your phone unattended. A serious vulnerability has been discovered in the OnePlus 6 bootloader that makes it possible for someone to boot arbitrary or modified images to take full admin control of your phone—even if the bootloader is locked. A...

Google Android Qualcomm component elevation of privilege vulnerability (CNVD-2018-12659)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An elevation of privilege vulnerability exists in the Google Android Qualcomm component Bootloader. An attacker can exploit this vulnerability to achieve elevation of privilege...

Google Android MediaTek component elevation of privilege vulnerability (CNVD-2018-13159)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An elevation of privilege vulnerability exists in the Google Android MediaTek component bootloader. An attacker can exploit this vulnerability to achieve elevation of privilege...

Google Android LG Component Elevation of Privilege Vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An elevation of privilege vulnerability exists in the Google Android LG component Bootloader. An attacker can exploit this vulnerability to achieve elevation of privilege...

Google Android MediaTek component elevation of privilege vulnerability (CNVD-2018-13158)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An elevation of privilege vulnerability exists in the Google Android MediaTek component bootloader. An attacker can exploit this vulnerability to achieve elevation of privilege...

Google Android Qualcomm component elevation of privilege vulnerability (CNVD-2018-12663)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An elevation of privilege vulnerability exists in the Google Android Qualcomm component Bootloader. An attacker can exploit this vulnerability to achieve elevation of privilege...

Google Android MediaTek component elevation of privilege vulnerability (CNVD-2018-13165)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An elevation of privilege vulnerability exists in the Google Android MediaTek component bootloader. An attacker can exploit this vulnerability to achieve elevation of privilege...

Google Android Qualcomm component elevation of privilege vulnerability (CNVD-2018-12656)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An elevation of privilege vulnerability exists in the Google Android Qualcomm component Bootloader. An attacker can exploit this vulnerability to achieve elevation of privilege...

Google Android MediaTek component elevation of privilege vulnerability (CNVD-2018-13160)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An elevation of privilege vulnerability exists in the Google Android MediaTek component bootloader. An attacker can exploit this vulnerability to achieve elevation of privilege...

The vulnerability of the find_ep() function in the Qualcomm USB Bootloader of the Android operating system allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the findep function in the Qualcomm USB Bootloader of the Android operating system is related to the assignment of a null pointer. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected informatio...

kernel security and bug fix update

2.6.32-696.30.1.OL6 - Update genkey bug 25599697 2.6.32-696.30.1 - x86 x86/kvm: fix CPUID7EDX word 18 mask Jan Stancek 1566893 1566899 CVE-2018-3639 2.6.32-696.29.1 - x86 x86/specctrl: Fix late microcode problem with AMD Waiman Long 1566893 1566899 CVE-2018-3639 - x86 x86/specctrl: Clean up entry...

The vulnerability of the Qualcomm XBL Android operating system’s loader allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the Qualcomm XBL Android operating system’s loader is related to authentication errors during the loading of device configuration. Exploiting this vulnerability allows a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information...

CVE-2015-9215

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9615, MDM9625, MDM9635M, and SD 810, improper input validation can cause a null pointer dereference in USB bootloader findep function...