CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Packet Storm News•added 5 days ago•1 views

ScaleDisturb: Exploiting Temporal Asymmetry to Amplify Read Disturbance in Modern DRAM Chips

DRAM suffers from read disturbance phenomena e.g., RowHammer and RowPress, where repeatedly accessing or continuously keeping open a DRAM row aggressor row induces bitflips in other physically nearby unaccessed rows victim rows. The disturbance mechanism is practically exploitable from the softwa...

5.5AI score

AstraLinux•added 2026/05/20 5:53 a.m.•0 views

Astra Linux - уязвимость в linux-5.10, linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: scsi: megaraidsas: Fixed an invalid node index issue. On systems with DRAM interleave enabled, out-of-bound access was detected: megaraidsas 0000:3f:00.0: Requested/available msix 128/128 pollqueue 0 ------------ Cut here...

7.8CVSS5.9AI score0.00071EPSS

Exploits0References2

Packet Storm News•added 2026/05/19 12:0 a.m.•5 views

Taking Cryptography out of the Data Path Via Near-Memory Processing in DRAM

Cryptographic algorithms such as AES-128 and SHA-256 are fundamental to ensuring data security and integrity. Although these algorithms are computationally efficient, their performance is often constrained by the processor-centric architectures e.g., CPUs, GPUs, primarily due to the memory...

5.8AI score

Packet Storm News•added 2026/03/19 12:0 a.m.•2 views

Quantifying Memory Cells Vulnerability for DRAM Security

Dynamic Random Access Memory DRAM is pervasive in computer systems. Cell vulnerabilities caused by unintended phenomena forced retention failure, latency alteration, rowhammer and rowpress lead to unintended bit flips in memory. These phenomena have been explored as attacks to violate data...

5.8AI score

RedhatCVE•added 2026/02/16 7:30 p.m.•4 views

CVE-2025-29949

Insufficient input parameter sanitization in AMD Secure Processor ASP Boot Loader legacy recovery mode only could allow an attacker to write out-of-bounds to corrupt Secure DRAM potentially resulting in denial of service...

NVD•added 2026/02/10 8:16 p.m.•3 views

CVE-2025-29949

4.8CVSS0.00021EPSS

CVE•added 2026/02/10 7:46 p.m.•9 views

CVE-2025-29949

CVE-2025-29949 is an AMD ASP Boot Loader issue limited to legacy recovery mode. The connected documents confirm insufficient input parameter sanitization in the ASP Boot Loader, which could allow an out-of-bounds write that corrupts Secure DRAM and may cause a denial of service. Affected software...

Vulnrichment•added 2026/02/10 7:46 p.m.•7 views

CVE-2025-29949

ATTACKERKB•added 2026/02/10 7:46 p.m.•4 views

CVE-2025-29949

Positive Technologies•added 2026/02/10 12:0 a.m.•5 views

Exploits0References2

PT-2026-7462

Name of the Vulnerable Software and Affected Versions AMD Secure Processor ASP Boot Loader affected versions not specified Description A flaw exists in the AMD Secure Processor ASP Boot Loader, specifically within its legacy recovery mode. This issue involves inadequate sanitization of input...

Tenable Nessus•added 2025/11/18 12:0 a.m.•2 views

Exploits0References4

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-50181)

clk: imx: Remove CLKSETPARENTGATE for DRAM mux for i.MX7D. For i.MX7D DRAM related mux clock, the clock source change should ONLY be done done in low level asm code without accessing DRAM, and then calling clk API to sync the HW clock status with clk tree, it should never touch real clock source...

7AI score

Exploits0References4

Packet Storm News•added 2025/10/18 12:0 a.m.•2 views

$Ρ$Hammer: Reviving RowHammer Attacks on New Architectures Via Prefetching

Rowhammer is a critical vulnerability in dynamic random access memory DRAM that continues to pose a significant threat to various systems. However, we find that conventional load-based attacks are becoming highly ineffective on the most recent architectures such as Intel Alder and Raptor Lake. In...

7.1AI score