18 matches found
CVE-2020-10367
Certain Cypress and Broadcom Wireless Combo chips, when a January 2021 firmware update is not present, allow memory access via a "Spectra" attack...
CVE-2020-10368
Certain Cypress and Broadcom Wireless Combo chips, when a January 2021 firmware update is not present, allow memory read access via a "Spectra" attack...
EUVD-2020-27764
Malware in sbrugna...
internalblue
This is an offensive tool for Bluetooth experimentation. It is a Bluetooth experimentation framework for Broadcom and Cypress chips, which enables various features that would otherwise only be possible with a full-stack software-defined radio implementation, such as injecting and monitoring packe...
internalblue
This is an offensive tool for Bluetooth experimentation and patching firmware. It is a Bluetooth experimentation framework for Broadcom and Cypress chips, which enables various features that would otherwise only be possible with a full-stack software-defined radio implementation, such as injectin...
CVE-2020-10369
Certain Cypress and Broadcom Wireless Combo chips, when a January 2021 firmware update is not present, allow inferences about memory content via a "Spectra" attack...
CVE-2020-10370
Certain Cypress and Broadcom Wireless Combo chips such as CYW43455, when a 2021-01-26 Bluetooth firmware update is not present, allow a Bluetooth outage via a "Spectra" attack...
CVE-2020-10370
Certain Cypress and Broadcom Wireless Combo chips such as CYW43455, when a 2021-01-26 Bluetooth firmware update is not present, allow a Bluetooth outage via a "Spectra" attack...
CVE-2020-10367
Certain Cypress and Broadcom Wireless Combo chips, when a January 2021 firmware update is not present, allow memory access via a "Spectra" attack...
CVE-2020-10367
Certain Cypress and Broadcom Wireless Combo chips, when a January 2021 firmware update is not present, allow memory access via a "Spectra" attack...
SUSE CVE-2020-10370
Certain Cypress and Broadcom Wireless Combo chips such as CYW43455, when a 2021-01-26 Bluetooth firmware update is not present, allow a Bluetooth outage via a "Spectra" attack...
SUSE CVE-2020-10369
Certain Cypress and Broadcom Wireless Combo chips, when a January 2021 firmware update is not present, allow inferences about memory content via a "Spectra" attack...
Code injection
Some Broadcom chips mishandle Bluetooth random-number generation because a low-entropy Pseudo Random Number Generator PRNG is used in situations where a Hardware Random Number Generator HRNG should have been used to prevent spoofing. This affects, for example, Samsung Galaxy S8, S8+, and Note8...
PT-2020-19183 · Broadcom +1 · Broadcom Chips +3
Name of the Vulnerable Software and Affected Versions: Broadcom chips affected versions not specified Samsung Galaxy S8, S8+, and Note8 devices with the BCM4361 chipset Description: The issue arises from the use of a low-entropy Pseudo Random Number Generator PRNG in situations where a Hardware...
CVE-2019-20612
An issue was discovered on Samsung mobile devices with N7.x and O8.x Broadcom Wi-Fi, and SEC Wi-Fi chipsets software. Wi-Fi allows a denial of service via TCP SYN packets. The Samsung ID is SVE-2018-13162 March 2019...
New Wi-Fi Encryption Vulnerability Affects Over A Billion Devices
Cybersecurity researchers today uncovered a new high-severity hardware vulnerability residing in the widely-used Wi-Fi chips manufactured by Broadcom and Cypress—apparently powering over a billion devices, including smartphones, tablets, laptops, routers, and IoT gadgets. Dubbed 'Kr00k ' and...
PT-2020-1885 · Broadcom +2 · Broadcom Wi-Fi Chips +2
Name of the Vulnerable Software and Affected Versions: Broadcom and Cypress Wi-Fi chips affected versions not specified Description: The issue is related to errors in synchronization when using a shared resource in Wi-Fi chipsets from Broadcom. This can allow a remote attacker to gain unauthorize...
Exploit for CVE-2020-6616
Broadcom c...