3 matches found
CVE-2024-7726
creationtimestamp| type| source ---|---|--- 2024-12-20 11:05:11+00:00| seen| https://infosec.exchange/users/cve/statuses/113684821511303214 2024-12-20 11:15:23+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3ldqb3ohg5n2r 2024-12-20 13:24:18+00:00| seen|...
CVE-2024-7726 Arbitrary Code execution via exposed JTAG port in Kioxia CM6, PM6, PM7
There exists an unauthenticated accessible JTAG port on the Kioxia PM6, PM7 and CM6 devices - On the Kioxia CM6, PM6 and PM7 disk drives it was discovered that the 2 main CPU cores of the SoC can be accessed via an open JTAG debug port that is exposed on the drive’s circuit board. Due to the wide...
CVE-2024-7726
The CVE-2024-7726 entry describes an unauthenticated, externally accessible JTAG port on Kioxia CM6, PM6 and PM7 SSDs. The JTAG port is exposed on the drive’s circuit board, allowing a physically proximate attacker to access the two main CPU cores’ firmware/memory, execute arbitrary code, alter f...