283 matches found
Design/Logic Flaw
The security protection in Gigadevice GD32F103 devices allows physical attackers to redirect the control flow and execute arbitrary code via the debug interface...
Memory corruption
The flash memory readout protection in China Key Systems & Integrated Circuit CKS32F103 devices allows physical attackers to extract firmware via the debug interface by utilizing the CPU or DMA module...
Memory corruption
The flash memory readout protection in Gigadevice GD32F103 devices allows physical attackers to extract firmware via the debug interface by utilizing the DMA module...
Memory corruption
The flash memory readout protection in China Key Systems & Integrated Circuit CKS32F103 devices allows physical attackers to extract firmware via the debug interface and exception handling...
Design/Logic Flaw
Gigadevice GD32F130 devices allow physical attackers to escalate their debug interface permissions via fault injection into inter-IC bonding wires which have insufficient physical protection...
Memory corruption
The flash memory readout protection in Apex Microelectronics APM32F103 devices allows physical attackers to extract firmware via the debug interface and exception handling...
CVE-2020-13472
CVE-2020-13472 describes a vulnerability in Gigadevice GD32F103 devices where the flash memory readout protection can be bypassed by a physical attacker via the debug interface using the DMA module to extract firmware. The connected records corroborate the affected hardware family and the attack ...
CVE-2020-13469
CVE-2020-13469 concerns the GD32VF103 family from Gigadevice, where the flash readout protection can be defeated by a physically present attacker through the debug interface and CPU access to extract firmware. The issue is described as a hardware/firmware protection bypass enabling firmware extra...
CVE-2020-13468
CVE-2020-13468 affects Gigadevice GD32F130 devices. Affected component is the device’s inter-IC bonding wires where fault injection can bypass physical protections, enabling a local attacker with access to escalate debug interface permissions. The root cause is insufficient physical protection of...
CVE-2020-13468
Gigadevice GD32F130 devices allow physical attackers to escalate their debug interface permissions via fault injection into inter-IC bonding wires which have insufficient physical protection...
CVE-2020-13467
The CVE-2020-13467 entry concerns China Key Systems & Integrated Circuit CKS32F103 devices where the flash memory readout protection can be bypassed, allowing physical attackers to extract firmware via the debug interface and exception handling. The vulnerability is described in the NVD entry as ...
CVE-2020-13467
The flash memory readout protection in China Key Systems & Integrated Circuit CKS32F103 devices allows physical attackers to extract firmware via the debug interface and exception handling...
CVE-2020-13465
The CVE-2020-13465 entry concerns Gigadevice GD32F103 devices. The connected CNVD-2020-52332 description confirms a code execution vulnerability that can be exploited by a physically-accessible attacker to submit a special request, redirect control flow, and execute arbitrary code via the debug i...
CVE-2020-13465
The security protection in Gigadevice GD32F103 devices allows physical attackers to redirect the control flow and execute arbitrary code via the debug interface...
CVE-2020-13464
The flash memory readout protection in China Key Systems & Integrated Circuit CKS32F103 devices allows physical attackers to extract firmware via the debug interface by utilizing the CPU or DMA module...
CVE-2020-13464
CVE-2020-13464 affects China Key Systems & Integrated Circuit CKS32F103 devices. The vulnerability is in the flash memory readout protection, allowing a physical attacker to extract firmware through the debug interface by leveraging the CPU or DMA module. Impact stated in sources is firmware disc...
CVE-2020-13463
The flash memory readout protection in Apex Microelectronics APM32F103 devices allows physical attackers to extract firmware via the debug interface and exception handling...
CVE-2020-13463
CVE-2020-13463 affects Apex Microelectronics APM32F103 devices, describing a flaw in the flash memory readout protection that can allow physical attackers to extract firmware via the debug interface and exception handling. The NVD metrics show CVSS v2 base score 2.1 (LOW) and CVSS v3.1 base score...
CVE-2019-18827
On Barco ClickShare Button R9861500D01 devices before firmware version 1.9.0 JTAG access is disabled after ROM code execution. This means that JTAG access is possible when the system is running code from ROM before handing control over to embedded firmware...
Ubuntu 16.04 LTS : Linux kernel vulnerabilities (USN-3932-1)
The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3932-1 advisory. It was discovered that a race condition existed in the f2fs file system implementation in the Linux kernel. A local attacker could use this to cause a...