Lucene search
+L

143 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 7:40 a.m.9 views

CVE-2024-31955

An issue was discovered in Samsung eMMC with KLMAG2GE4A and KLM8G1WEMB firmware. Code bypass through Electromagnetic Fault Injection allows an attacker to successfully authenticate and write to the RPMB Replay Protected Memory Block area without possessing secret information...

4.9CVSS7.5AI score0.00234EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 10:10 p.m.10 views

CVE-2022-42784

A vulnerability has been identified in LOGO! 12/24RCE 6ED1052-1MD08-0BA1 All versions = V8.3, LOGO! 12/24RCEo 6ED1052-2MD08-0BA1 All versions = V8.3, LOGO! 230RCE 6ED1052-1FB08-0BA1 All versions = V8.3, LOGO! 230RCEo 6ED1052-2FB08-0BA1 All versions = V8.3, LOGO! 24CE 6ED1052-1CC08-0BA1 All versio...

7.6CVSS7.2AI score0.00248EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/10/15 12:0 a.m.4 views

SAMSUNG eMMC 安全漏洞

SAMSUNG eMMC is a standard for flash memory cards from Samsung South Korea. A security vulnerability exists in SAMSUNG eMMC versions KLMAG2GE4A and KLM8G1WEMB, which originates from a code bypass via electromagnetic fault injection, which allows an attacker to successfully authenticate and write ...

4.9CVSS7AI score0.00234EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/10/15 12:0 a.m.19 views

CVE-2024-31955

An issue was discovered in Samsung eMMC with KLMAG2GE4A and KLM8G1WEMB firmware. Code bypass through Electromagnetic Fault Injection allows an attacker to successfully authenticate and write to the RPMB Replay Protected Memory Block area without possessing secret information...

4.9CVSS0.00234EPSS
Exploits0References1
HackRead
HackRead
added 2024/09/18 8:42 a.m.9 views

RAMBO Attack: Electromagnetic Waves Steal Data from Air-Gapped Systems

Discover the RAMBO attack, a groundbreaking method that uses electromagnetic waves to steal data from air-gapped systems. Learn…...

7.2AI score
Exploits0
OSV
OSV
added 2024/09/03 8:15 p.m.4 views

CVE-2024-45678

Yubico YubiKey 5 Series devices with firmware before 5.7.0 and YubiHSM 2 devices with firmware before 2.4.0 allow an ECDSA secret-key extraction attack that requires physical access and expensive equipment in which an electromagnetic side channel is present because of a non-constant-time modular...

4.2CVSS5.7AI score0.00329EPSS
Exploits0References6
NVD
NVD
added 2024/09/03 8:15 p.m.48 views

CVE-2024-45678

Yubico YubiKey 5 Series devices with firmware before 5.7.0 and YubiHSM 2 devices with firmware before 2.4.0 allow an ECDSA secret-key extraction attack that requires physical access and expensive equipment in which an electromagnetic side channel is present because of a non-constant-time modular...

4.2CVSS0.00329EPSS
Exploits0References6
CNNVD
CNNVD
added 2024/09/03 12:0 a.m.4 views

Yubico YubiKey 5 安全漏洞

Yubico YubiKey 5 is a multi-protocol secure secret key device from Yubico. A security vulnerability exists in Yubico YubiKey 5 versions prior to 5.7.0 and YubiHSM 2 versions prior to 2.4.0, which stems from an electromagnetic side channel due to a non-constant time modulo inversion in the Extende...

4.2CVSS6.3AI score0.00329EPSS
Exploits0References7
CVE
CVE
added 2024/09/03 12:0 a.m.126 views

CVE-2024-45678

The CVE-2024-45678 EYCL EAK issue affects Yubico YubiKey 5 Series firmware < 5.7.0 and YubiHSM 2 firmware

4.2CVSS7.1AI score0.00329EPSS
Exploits0References6Affected Software1
Vulnrichment
Vulnrichment
added 2024/09/03 12:0 a.m.21 views

CVE-2024-45678

Yubico YubiKey 5 Series devices with firmware before 5.7.0 and YubiHSM 2 devices with firmware before 2.4.0 allow an ECDSA secret-key extraction attack that requires physical access and expensive equipment in which an electromagnetic side channel is present because of a non-constant-time modular...

7.1AI score0.00329EPSS
Exploits0References6
Cvelist
Cvelist
added 2024/09/03 12:0 a.m.41 views

CVE-2024-45678

Yubico YubiKey 5 Series devices with firmware before 5.7.0 and YubiHSM 2 devices with firmware before 2.4.0 allow an ECDSA secret-key extraction attack that requires physical access and expensive equipment in which an electromagnetic side channel is present because of a non-constant-time modular...

0.00329EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2024/09/03 12:0 a.m.7 views

PT-2024-31724

Name of the Vulnerable Software and Affected Versions: Yubico YubiKey 5 Series devices with firmware before 5.7.0 YubiHSM 2 devices with firmware before 2.4.0 Description: The issue allows an ECDSA secret-key extraction attack that requires physical access and expensive equipment. This attack is...

4.2CVSS5.3AI score0.00329EPSS
Exploits0References19
OSV
OSV
added 2024/02/23 5:15 p.m.5 views

CVE-2023-51392

Ember ZNet between v7.2.0 and v7.4.0 used software AES-CCM instead of integrated hardware cryptographic accelerators, potentially increasing risk of electromagnetic and differential power analysis sidechannel attacks...

9.8CVSS5.8AI score0.00244EPSS
Exploits0References1
Prion
Prion
added 2024/02/23 5:15 p.m.16 views

Hardcoded credentials

Ember ZNet between v7.2.0 and v7.4.0 used software AES-CCM instead of integrated hardware cryptographic accelerators, potentially increasing risk of electromagnetic and differential power analysis sidechannel attacks...

2.1CVSS7.4AI score0.00244EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/02/23 4:12 p.m.15 views

CVE-2023-51392 Silicon Labs EFR32xxx parts with classic key storage do not use hardware accelerated AES-CCM

Ember ZNet between v7.2.0 and v7.4.0 used software AES-CCM instead of integrated hardware cryptographic accelerators, potentially increasing risk of electromagnetic and differential power analysis sidechannel attacks...

6.2CVSS7.2AI score0.00244EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/02/23 4:12 p.m.18 views

CVE-2023-51392 Silicon Labs EFR32xxx parts with classic key storage do not use hardware accelerated AES-CCM

Ember ZNet between v7.2.0 and v7.4.0 used software AES-CCM instead of integrated hardware cryptographic accelerators, potentially increasing risk of electromagnetic and differential power analysis sidechannel attacks...

6.2CVSS6.6AI score0.00244EPSS
Exploits0References1
Schneier on Security
Schneier on Security
added 2024/01/23 12:9 p.m.16 views

Side Channels Are Common

Really interesting research: "Lend Me Your Ear: Passive Remote Physical Side Channels on PCs." Abstract: We show that built-in sensors in commodity PCs, such as microphones, inadvertently capture electromagnetic side-channel leakage from ongoing computation. Moreover, this information is often...

7.1AI score
Exploits0
CNVD
CNVD
added 2023/12/13 12:0 a.m.26 views

Unspecified Vulnerability in Siemens LOGO! BM (Base Module) Devices

Siemens LOGO! BM Base Module devices are used for basic small-scale automation tasks. An unspecified vulnerability exists in the Siemens LOGO! BM Base Module device due to the susceptibility of the affected device to electromagnetic fault injection. An attacker could exploit the vulnerability to...

7.6CVSS7.4AI score0.00248EPSS
Exploits0References1
NVD
NVD
added 2023/12/12 10:15 a.m.15 views

CVE-2022-42784

A vulnerability has been identified in LOGO! 12/24RCE 6ED1052-1MD08-0BA1 All versions = V8.3, LOGO! 12/24RCEo 6ED1052-2MD08-0BA1 All versions = V8.3, LOGO! 230RCE 6ED1052-1FB08-0BA1 All versions = V8.3, LOGO! 230RCEo 6ED1052-2FB08-0BA1 All versions = V8.3, LOGO! 24CE 6ED1052-1CC08-0BA1 All versio...

7.6CVSS0.00248EPSS
Exploits0References2
OSV
OSV
added 2023/12/12 10:15 a.m.4 views

CVE-2022-42784

A vulnerability has been identified in LOGO! 12/24RCE 6ED1052-1MD08-0BA1 All versions = V8.3, LOGO! 12/24RCEo 6ED1052-2MD08-0BA1 All versions = V8.3, LOGO! 230RCE 6ED1052-1FB08-0BA1 All versions = V8.3, LOGO! 230RCEo 6ED1052-2FB08-0BA1 All versions = V8.3, LOGO! 24CE 6ED1052-1CC08-0BA1 All versio...

6.8CVSS5.7AI score0.00248EPSS
Exploits0References2
Rows per page
Query Builder