Lucene search
+L

45 matches found

Cvelist
Cvelist
added 2024/04/16 8:54 a.m.19 views

CVE-2024-32633 Unsigned compared against 0

An unsigned value can never be negative, so eMMC full disk test will always evaluate the same way...

4CVSS4.7AI score0.00234EPSS
Exploits0References1
CVE
CVE
added 2024/04/16 8:54 a.m.67 views

CVE-2024-32633

CVE-2024-32633 describes a flaw where an unsigned value can never be negative, causing eMMC full-disk test evaluations to always yield the same result. Connected sources identify the Asrmicro ASR Series (ASR360x, ASR160x, ASR180x) as affected. The initial entry provides a CVSSv3.1 base score of 4...

4CVSS6.8AI score0.00234EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/04/16 8:54 a.m.14 views

CVE-2024-32633 Unsigned compared against 0

An unsigned value can never be negative, so eMMC full disk test will always evaluate the same way...

4CVSS6.9AI score0.00234EPSS
Exploits0References1
Rapid7 Blog
Rapid7 Blog
added 2022/10/18 4:0 p.m.22 views

Hands-On IoT Hacking: Rapid7 at DEF CON 30 IoT Village, Part 1

Rapid7 was back this year at DEF CON 30 participating at the IoT Village with another hands-on hardware hacking exercise, with the goal of teaching attendees' various concepts and methods for IoT hacking. Over the years, these exercises have covered several different embedded device topics,...

0.3AI score
Exploits0
Prion
Prion
added 2021/09/08 12:15 p.m.22 views

Buffer overflow

Buffer over read could occur due to incorrect check of buffer size while flashing emmc devices in Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking...

3.6CVSS6.5AI score0.00146EPSS
Exploits0References1
CVE
CVE
added 2021/09/08 11:25 a.m.61 views

CVE-2021-1928

CVE-2021-1928 affects a range of Qualcomm Snapdragon devices where emmc flashing code performs an improper buffer size check, causing a buffer over-read. Root cause: incorrect bounds check during memory handling in the emmc flashing path. Impact stated in CVSS: partial confidentiality and partial...

6.1CVSS6.5AI score0.00146EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/09/08 11:25 a.m.30 views

CVE-2021-1928

Buffer over read could occur due to incorrect check of buffer size while flashing emmc devices in Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking...

4.6CVSS6.7AI score0.00146EPSS
Exploits0References1
Cent OS
Cent OS
added 2021/04/10 5:9 p.m.299 views

bpftool, kernel, perf, python security update

CentOS Errata and Security Advisory CESA-2021:1071 An update for kernel is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

7.8CVSS6.7AI score0.02079EPSS
Exploits3References7
NVD
NVD
added 2020/11/18 10:15 p.m.21 views

CVE-2020-13799

Western Digital has identified a security vulnerability in the Replay Protected Memory Block RPMB protocol as specified in multiple standards for storage device interfaces, including all versions of eMMC, UFS, and NVMe. The RPMB protocol is specified by industry standards bodies and is implemente...

6.8CVSS8.2AI score0.00291EPSS
Exploits0References2
CVE
CVE
added 2020/11/18 9:12 p.m.75 views

CVE-2020-13799

CVE-2020-13799 describes a vulnerability in the Replay Protected Memory Block (RPMB) protocol used by storage interfaces (eMMC/UFS/NVMe). The issue arises when an attacker can affect the RPMB state without the knowledge of the trusted component that uses RPMB, across multiple standards, potential...

6.8CVSS7.3AI score0.00291EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/11/18 9:12 p.m.31 views

CVE-2020-13799

Western Digital has identified a security vulnerability in the Replay Protected Memory Block RPMB protocol as specified in multiple standards for storage device interfaces, including all versions of eMMC, UFS, and NVMe. The RPMB protocol is specified by industry standards bodies and is implemente...

7AI score0.00291EPSS
Exploits0References2
NVD
NVD
added 2019/08/14 1:15 p.m.31 views

CVE-2019-15027

The MediaTek Embedded Multimedia Card eMMC subsystem for Android on MT65xx, MT66xx, and MT8163 SoC devices allows attackers to execute arbitrary commands as root via shell metacharacters in a filename under /data, because clearemmcnomediaentry in platform/mt6577/external/meta/emmc/metaclremmc.c...

10CVSS9.6AI score0.03181EPSS
Exploits1References2
Prion
Prion
added 2019/08/14 1:15 p.m.27 views

Code injection

The MediaTek Embedded Multimedia Card eMMC subsystem for Android on MT65xx, MT66xx, and MT8163 SoC devices allows attackers to execute arbitrary commands as root via shell metacharacters in a filename under /data, because clearemmcnomediaentry in platform/mt6577/external/meta/emmc/metaclremmc.c...

10CVSS9.4AI score0.03181EPSS
Exploits1References2
CVE
CVE
added 2019/08/14 12:3 p.m.66 views

CVE-2019-15027

The CVE-2019-15027 issue affects the MediaTek Embedded Multimedia Card (eMMC) subsystem on Android devices with MT65xx, MT66xx, and MT8163 SoCs. The root cause is in clear_emmc_nomedia_entry (platform/mt6577/external/meta/emmc/meta_clr_emmc.c), which invokes system("/system/bin/rm -r /data/" + a ...

10CVSS9.5AI score0.03181EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2019/08/14 12:3 p.m.36 views

CVE-2019-15027

The MediaTek Embedded Multimedia Card eMMC subsystem for Android on MT65xx, MT66xx, and MT8163 SoC devices allows attackers to execute arbitrary commands as root via shell metacharacters in a filename under /data, because clearemmcnomediaentry in platform/mt6577/external/meta/emmc/metaclremmc.c...

9.6AI score0.03181EPSS
Exploits1References2
Prion
Prion
added 2018/04/18 2:29 p.m.19 views

Buffer overflow

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Snapdragon Wear IPQ4019, MDM9206, MDM9607, MDM9615, MDM9625, MDM9640, MDM9650, MDM9655, MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 600, SD 615/16/SD 415, and SDX20, when reading CDT from eMMC...

10CVSS8.7AI score0.01354EPSS
Exploits0References2
CVE
CVE
added 2018/04/18 2:0 p.m.52 views

CVE-2015-9143

CVE-2015-9143 affects Android devices with Qualcomm Snapdragon platforms (including IPQ4019, MDM9xxx, MSM89x, SD family) prior to the 2018-04-05 security patch level. The issue is a buffer overflow that occurs when reading CDT from eMMC with a very large meta offset exceeding the default CDT-arra...

10CVSS8.8AI score0.01354EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2018/01/10 10:0 p.m.46 views

CVE-2017-14870

CVE-2017-14870 affects Android for MSM/CAF Linux-based Android (Android builds using CAF), specifically involving 1088 bytes of stack memory leakage during eMMC recovery message updates. The vulnerability is categorized as information disclosure with partial confidentiality impact and could be ex...

7.5CVSS7.1AI score0.00412EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2018/01/10 10:0 p.m.23 views

CVE-2017-14870

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while updating the recovery message for eMMC devices, 1088 bytes of stack memory can potentially be leaked...

7.2AI score0.00412EPSS
Exploits0References1
NVD
NVD
added 2017/06/13 8:29 p.m.19 views

CVE-2014-9961

In all Android releases from CAF using the Linux kernel, a vulnerability in eMMC write protection exists that can be used to bypass power-on write protection...

9.3CVSS7.3AI score0.00561EPSS
Exploits0References3
Rows per page
Query Builder