Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

28 matches found

RedhatCVE
RedhatCVEadded 2026/02/16 1:25 p.m.1 views

CVE-2023-31323

Type confusion in the AMD Secure Processor ASP could allow an attacker to pass a malformed argument to the External Global Memory Interconnect Trusted Agent XGMI TA leading to a memory safety violation potentially resulting in loss of confidentiality, integrity, or availability...

8.4CVSS5.5AI score0.00021EPSS
Exploits0References1
NVD
NVDadded 2026/02/12 6:16 p.m.2 views

CVE-2023-31323

Type confusion in the AMD Secure Processor ASP could allow an attacker to pass a malformed argument to the External Global Memory Interconnect Trusted Agent XGMI TA leading to a memory safety violation potentially resulting in loss of confidentiality, integrity, or availability...

8.4CVSS0.00021EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/02/12 5:45 p.m.2 views

CVE-2023-31323

Type confusion in the AMD Secure Processor ASP could allow an attacker to pass a malformed argument to the External Global Memory Interconnect Trusted Agent XGMI TA leading to a memory safety violation potentially resulting in loss of confidentiality, integrity, or availability...

8.4CVSS5.5AI score0.00021EPSS
Exploits0References2
CVE
CVEadded 2026/02/12 5:45 p.m.8 views

CVE-2023-31323

CVE-2023-31323 affects the AMD Secure Processor (ASP) with a Type confusion in the External Global Memory Interconnect Trusted Agent (XGMI TA). The issue can allow a malformed argument to be passed to XGMI TA, causing a memory safety violation and potential loss of confidentiality, integrity, or ...

8.4CVSS5.5AI score0.00021EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/02/12 12:0 a.m.0 views

PT-2026-7877

Type confusion in the AMD Secure Processor ASP could allow an attacker to pass a malformed argument to the External Global Memory Interconnect Trusted Agent XGMI TA leading to a memory safety violation potentially resulting in loss of confidentiality, integrity, or availability...

8.4CVSS5.5AI score0.00021EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/02/11 12:0 a.m.1 views

PT-2026-7587

A Time-of-check time-of-use TOCTOU race condition in the AMD Secure Processor ASP could allow an attacker to modify External Global Memory Interconnect Trusted Agent XGMI TA commands as they are processed potentially resulting in loss of confidentiality, integrity, or availability...

7.1CVSS5.6AI score0.00005EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2026/01/09 11:52 a.m.6 views

CVE-2009-4325

The Client Interfaces component in IBM DB2 8.2 before FP18, 9.1 before FP8, 9.5 before FP5, and 9.7 before FP1 does not validate an unspecified pointer, which allows attackers to overwrite "external memory" via unknown vectors, related to a missing "check for null pointers."...

6.4CVSS6.6AI score0.0178EPSS
Exploits1References1
Vulnrichment
Vulnrichmentadded 2026/01/07 8:2 p.m.2 views

CVE-2025-64305 Columbia Weather Systems MicroServer Cleartext Storage in a File or on Disk

MicroServer copies parts of the system firmware to an unencrypted external SD card on boot, which contains user and vendor secrets. An attacker can utilize these plaintext secrets to modify the vendor firmware, or gain admin access to the web portal...

7.1CVSS6.7AI score0.00012EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/10/27 1:33 p.m.5 views

CVE-2025-34503

Deck Mate 1 executes firmware directly from an external EEPROM without verifying authenticity or integrity. An attacker with physical access can replace or reflash the EEPROM to run arbitrary code that persists across reboots. Because this design predates modern secure-boot or signed-update...

7CVSS7.1AI score0.00015EPSS
Exploits0References1
NVD
NVDadded 2025/10/24 11:15 p.m.3 views

CVE-2025-34503

Deck Mate 1 executes firmware directly from an external EEPROM without verifying authenticity or integrity. An attacker with physical access can replace or reflash the EEPROM to run arbitrary code that persists across reboots. Because this design predates modern secure-boot or signed-update...

7CVSS0.00015EPSS
Exploits0References2
Cvelist
Cvelistadded 2025/10/24 11:4 p.m.26 views

CVE-2025-34503 Shuffle Master Deck Mate 1 Unauthenticated EEPROM Firmware Execution

Deck Mate 1 executes firmware directly from an external EEPROM without verifying authenticity or integrity. An attacker with physical access can replace or reflash the EEPROM to run arbitrary code that persists across reboots. Because this design predates modern secure-boot or signed-update...

7CVSS0.00015EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2009-4293

Malware in sbrugna...

6.4CVSS6.1AI score0.0178EPSS
Exploits1References14
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2023-32220

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.00078EPSS
Exploits0References1
Hacker One
Hacker Oneadded 2025/08/18 6:42 a.m.13 views

Node.js: CWE-195 in ExternalMemoryAccounter::Increase()

Summary: V8's ExternalMemoryAccounter::Increase expects an unsigned sizet argument, but a signed ssizet which in some cases results in garbage collection to happen during garbage collection. Here's a simplified version of what happens full backtrace has been attached in the issue:...

6.7AI score
Exploits0
RedhatCVE
RedhatCVEadded 2025/05/23 6:2 a.m.1 views

CVE-2023-28550

Memory corruption in MPP performance while accessing DSM watermark using external memory address...

7.8CVSS7.1AI score0.00078EPSS
Exploits0References1
Cvelist
Cvelistadded 2024/04/02 10:27 a.m.11 views

CVE-2023-6949

A Missing Authentication for Critical Function issue affecting the HTTP service running on the DJI Mavic Mini 3 Pro on the standard port 80 could allow an attacker to enumerate and download videos and pictures saved on the drone internal or external memory without requiring any kind of...

5.2CVSS5.6AI score0.0007EPSS
Exploits0References1
CVE
CVEadded 2024/04/02 10:27 a.m.43 views

CVE-2023-6949

CVE-2023-6949 affects the HTTP service on DJI Mavic Mini 3 Pro. A Missing Authentication for Critical Function vulnerability on port 80 allows an attacker to enumerate and download videos and pictures stored in drone memory without authentication. Connected sources corroborate the issue and ident...

5.2CVSS6.9AI score0.0007EPSS
Exploits0References1
NVD
NVDadded 2023/12/05 3:15 a.m.11 views

CVE-2023-28550

Memory corruption in MPP performance while accessing DSM watermark using external memory address...

7.8CVSS0.00078EPSS
Exploits0References1
Prion
Prionadded 2023/12/05 3:15 a.m.14 views

Memory corruption

Memory corruption in MPP performance while accessing DSM watermark using external memory address...

4.3CVSS7.4AI score0.00078EPSS
Exploits0References1
Cvelist
Cvelistadded 2023/12/05 3:3 a.m.13 views

CVE-2023-28550 Improper Restriction of Operations within the Bounds of a Memory Buffer in MPP Performance

Memory corruption in MPP performance while accessing DSM watermark using external memory address...

7.8CVSS8AI score0.00078EPSS
Exploits0References1
Rows per page
Query Builder