Lucene search
K

41 matches found

NVD
NVD
added 2023/11/07 8:15 a.m.16 views

CVE-2023-43885

Missing error handling in the HTTP server component of Tenda RX9 Pro Firmware V22.03.02.20 allows authenticated attackers to arbitrarily lock the device...

8.1CVSS8AI score0.00652EPSS
Exploits1References1
Prion
Prion
added 2023/11/07 8:15 a.m.19 views

Design/Logic Flaw

Missing error handling in the HTTP server component of Tenda RX9 Pro Firmware V22.03.02.20 allows authenticated attackers to arbitrarily lock the device...

5.5CVSS6.8AI score0.00652EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2023/10/25 7:15 p.m.24 views

CVE-2023-41997

This issue was addressed by restricting options offered on a locked device. This issue is fixed in macOS Sonoma 14.1, watchOS 10.1, iOS 16.7.2 and iPadOS 16.7.2, iOS 17.1 and iPadOS 17.1. An attacker with physical access may be able to use Siri to access sensitive user data...

4.6CVSS3.3AI score0.00457EPSS
Exploits0References12
Malwarebytes
Malwarebytes
added 2023/02/02 9:30 a.m.17 views

Cybersecurity and privacy tips you can teach your 5+-year-old

Everything we teach our kids starts at home--we parents are their first teachers, after all. So, why wait for them to start going to school to start learning about cybersecurity and online privacy? Though it's hardly news that more and more children are being introduced to mobile computing device...

7AI score
Exploits0
CVE
CVE
added 2022/05/03 7:42 p.m.81 views

CVE-2022-28790

CVE-2022-28790 relates to the Link to Windows Service prior to version 2.3.04.1, where improper authentication can allow an attacker to lock the device. The available documents state the patch fixes this by adding proper caller signature check logic. No exploitation details are provided in the so...

4CVSS4.3AI score0.00199EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/05/03 7:42 p.m.22 views

CVE-2022-28790

Improper authentication in Link to Windows Service prior to version 2.3.04.1 allows attacker to lock the device. The patch adds proper caller signature check logic...

4CVSS4.8AI score0.00199EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/02/01 12:0 a.m.6 views

Qualcomm RFA Security Vulnerability

Qualcomm RFA is a Qualcomm Incorporated USA support component used in chips. A security vulnerability exists in Qualcomm RFA due to improper authentication of SPC code settings and device locking...

8.8CVSS7.4AI score0.00161EPSS
Exploits0References3
CNVD
CNVD
added 2018/06/19 12:0 a.m.3 views

Symantec Norton App Lock Access Gain Vulnerability

Symantec Norton App Lock is a suite of applications from Symantec USA that provide security features for mobile devices. A security vulnerability exists in Symantec Norton App Lock. An attacker could exploit the vulnerability to gain access to a device by bypassing the application and preventing...

7.2CVSS6.5AI score0.00392EPSS
Exploits0References1
0day.today
0day.today
added 2017/09/02 12:0 a.m.64 views

Motorola Bootloader - Kernel Cmdline Injection Secure Boot and Device Locking Bypass Exploit

Exploit for Android platform in category local exploits Sources: https://alephsecurity.com/2017/08/30/untethered-initroot/ https://github.com/alephsecurity/initroot initroot: Motorola Bootloader Kernel Cmdline Injection Secure Boot & Device Locking Bypass CVE-2016-10277 By Roee Hay / Aleph...

6.8AI score0.09465EPSS
Exploits5
Exploit DB
Exploit DB
added 2017/09/01 12:0 a.m.457 views

Motorola Bootloader - Kernel Cmdline Injection Secure Boot and Device Locking Bypass

Sources: https://alephsecurity.com/2017/08/30/untethered-initroot/ https://github.com/alephsecurity/initroot initroot: Motorola Bootloader Kernel Cmdline Injection Secure Boot & Device Locking Bypass CVE-2016-10277 By Roee Hay / Aleph Research, HCL Technologies Recap of the Vulnerability and the...

9.3CVSS7.8AI score0.09465EPSS
Exploits5
Citrix
Citrix
added 2017/06/05 12:0 a.m.10 views

NotNow - Explanation and Cause

There are certain times when the device is not able to do what the server requests. For example, databases cannot be modified while the device is locked with Data Protection. When a device cannot perform a command due to situations like this, it will send the NotNow status without performing the...

6.5AI score
Exploits0
NVD
NVD
added 2013/11/30 11:43 a.m.21 views

CVE-2013-5635

Media Encryption EPM Explorer in Check Point Endpoint Security through E80.50 does not properly maintain the state of password failures, which makes it easier for physically proximate attackers to bypass the device-locking protection mechanism by entering password guesses within multiple Unlock.e...

3.3CVSS6.7AI score0.00207EPSS
Exploits0References2
NVD
NVD
added 2013/11/30 11:43 a.m.17 views

CVE-2013-5636

Unlock.exe in Media Encryption EPM Explorer in Check Point Endpoint Security through E80.50 does not associate password failures with a device ID, which makes it easier for physically proximate attackers to bypass the device-locking protection mechanism by overwriting DVREM.EPM with a copy of...

3.3CVSS6.6AI score0.00196EPSS
Exploits0References2
Prion
Prion
added 2013/11/30 11:43 a.m.12 views

Design/Logic Flaw

Unlock.exe in Media Encryption EPM Explorer in Check Point Endpoint Security through E80.50 does not associate password failures with a device ID, which makes it easier for physically proximate attackers to bypass the device-locking protection mechanism by overwriting DVREM.EPM with a copy of...

3.3CVSS7.2AI score0.00196EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2013/11/30 11:43 a.m.14 views

Design/Logic Flaw

Media Encryption EPM Explorer in Check Point Endpoint Security through E80.50 does not properly maintain the state of password failures, which makes it easier for physically proximate attackers to bypass the device-locking protection mechanism by entering password guesses within multiple Unlock.e...

3.3CVSS7.2AI score0.00207EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2013/11/30 11:0 a.m.86 views

CVE-2013-5635

Affected software : Media Encryption EPM Explorer in Check Point Endpoint Security (through E80.50). Issue : a weakness in how password failure state is maintained, enabling bypass of the device-lock protection by running multiple Unlock.exe processes concurrently. Impact : local, physically prox...

3.3CVSS6.9AI score0.00207EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2013/11/30 11:0 a.m.81 views

CVE-2013-5636

The CVE-2013-5636 issue affects Check Point Endpoint Security (E80.50) with Media Encryption EPM Explorer’s Unlock.exe. The root cause is that password failure events are not associated with a device ID, enabling physically proximate attackers to bypass device-lock protection by overwriting DVREM...

3.3CVSS6.8AI score0.00196EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2013/11/30 11:0 a.m.24 views

CVE-2013-5635

Media Encryption EPM Explorer in Check Point Endpoint Security through E80.50 does not properly maintain the state of password failures, which makes it easier for physically proximate attackers to bypass the device-locking protection mechanism by entering password guesses within multiple Unlock.e...

6.7AI score0.00207EPSS
Exploits0References2
Prion
Prion
added 2010/02/03 7:30 p.m.23 views

Memory corruption

Recovery Mode in Apple iPhone OS 1.0 through 3.1.2, and iPhone OS for iPod touch 1.1 through 3.1.2, allows physically proximate attackers to bypass device locking, and read or modify arbitrary data, via a USB control message that triggers memory corruption...

4.6CVSS6.6AI score0.00363EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2010/02/03 7:0 p.m.11 views

CVE-2010-0038

Recovery Mode in Apple iPhone OS 1.0 through 3.1.2, and iPhone OS for iPod touch 1.1 through 3.1.2, allows physically proximate attackers to bypass device locking, and read or modify arbitrary data, via a USB control message that triggers memory corruption...

6.6AI score0.00363EPSS
Exploits1References4
Rows per page
Query Builder