Cisco NX-OS Software Image Verification Bypass Vulnerability

A vulnerability in the bootloader of Cisco NX-OS Software could allow an unauthenticated attacker with physical access to an affected device, or an authenticated, local attacker with administrative credentials, to bypass NX-OS image signature verification. This vulnerability is due to insecure...

PT-2024-18658 · Cisco · Nexus 9000 +5

Name of the Vulnerable Software and Affected Versions: Cisco NX-OS Software affected versions not specified Description: A vulnerability in the bootloader of Cisco NX-OS Software could allow an unauthenticated attacker with physical access to an affected device, or an authenticated, local attacke...

Cisco NX-OS Software 访问控制错误漏洞

Cisco NX-OS Software is a set of data center-grade operating system software for switches from the U.S. company Cisco Cisco. The Cisco NX-OS Software suffers from an Access Control Error vulnerability, which arises from an insecure bootloader setting, and can be exploited by an attacker to bypass...

CVE-2018-9372

In cmdflashmmcsparseimg of dlcommands.c, there is a possible out of bounds write due to a missing bounds check. This could lead to a local escalation of privilege in the bootloader with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2018-9369

In bootloader there is fastboot command allowing user specified kernel command line arguments. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation...

CVE-2018-9372

In cmdflashmmcsparseimg of dlcommands.c, there is a possible out of bounds write due to a missing bounds check. This could lead to a local escalation of privilege in the bootloader with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2018-9372

In cmdflashmmcsparseimg of dlcommands.c, there is a possible out of bounds write due to a missing bounds check. This could lead to a local escalation of privilege in the bootloader with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2018-9369

In bootloader there is fastboot command allowing user specified kernel command line arguments. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation...

CVE-2018-9369

In bootloader there is fastboot command allowing user specified kernel command line arguments. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation...

Google Android 安全漏洞

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An elevation of privilege vulnerability exists in the Google Android MediaTek component bootloader. An attacker can exploit this vulnerability to achieve elevation of privilege...

Google Android 安全漏洞

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An elevation of privilege vulnerability exists in the Google Android MediaTek component bootloader. An attacker can exploit this vulnerability to achieve elevation of privilege...

Google Android 安全漏洞

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An elevation of privilege vulnerability exists in the Google Android LG component Bootloader. An attacker can exploit this vulnerability to achieve elevation of privilege...

Google Android 安全漏洞

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An elevation of privilege vulnerability exists in the Google Android MediaTek component bootloader. An attacker can exploit this vulnerability to achieve elevation of privilege...

Google Android 安全漏洞

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An elevation of privilege vulnerability exists in the Google Android MediaTek component bootloader. An attacker can exploit this vulnerability to achieve elevation of privilege...

PT-2024-10649 · Google · Android

Name of the Vulnerable Software and Affected Versions: No specific software or version information is provided. Description: The issue is related to a possible out of bounds write in the bootloader due to a missing bounds check. This could lead to a local escalation of privilege with no additiona...

The vulnerability of GRUB’s NTFS driver, a loader program for operating systems, relates to reading memory beyond the buffer boundaries, allowing an attacker to read the contents of the RAM.

The vulnerability of the GRUB loader driver for NTFS operating systems involves reading memory beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to read the contents of the RAM...

The vulnerability of the GRUB loader program, related to bypassing authentication methods through spoofing techniques, allows a perpetrator to circumvent the authentication process and enhance their privileges within the system.

The vulnerability of the GRUB bootloader is related to the ability to bypass authentication methods using spoofing techniques. Exploiting this vulnerability allows an attacker to circumvent the authentication process and enhance their privileges within the system...

grub2 安全漏洞

grub2 is a Linux system boot program from the American GNU community. A security vulnerability exists in grub2 that originates from allowing an attacker with access to the grub shell to access files on an encrypted disk...

The vulnerability of the bootloader component in Android operating systems of Samsung mobile devices allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the bootloader component in Android mobile devices from Samsung is related to deficiencies in authentication procedures. Exploiting this vulnerability could allow attackers to compromise the confidentiality, integrity, and accessibility of protected information...

The vulnerability of the bootloader component in Android operating systems of Samsung mobile devices allows attackers to influence the confidentiality and accessibility of the protected information.

The vulnerability of the bootloader component in Android operating systems of Samsung mobile devices relates to the execution of operations beyond the buffer in memory. Exploiting this vulnerability could allow an attacker to influence the confidentiality and accessibility of the protected...