Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

20 matches found

RedhatCVE
RedhatCVEadded 2026/01/15 12:23 a.m.13 views

CVE-2025-65396

A vulnerability in the boot process of Blurams Flare Camera version 24.1114.151.929 and earlier allows a physically proximate attacker to hijack the boot mechanism and gain a bootloader shell via the UART interface. This is achieved by inducing a read error from the SPI flash memory during the...

6.1CVSS6.4AI score0.00198EPSS
Exploits0References1
OSV
OSVadded 2026/01/14 5:16 p.m.4 views

CVE-2025-65396

A vulnerability in the boot process of Blurams Flare Camera version 24.1114.151.929 and earlier allows a physically proximate attacker to hijack the boot mechanism and gain a bootloader shell via the UART interface. This is achieved by inducing a read error from the SPI flash memory during the...

6.1CVSS5.8AI score0.00198EPSS
Exploits0References3
NVD
NVDadded 2026/01/14 5:16 p.m.5 views

CVE-2025-65396

A vulnerability in the boot process of Blurams Flare Camera version 24.1114.151.929 and earlier allows a physically proximate attacker to hijack the boot mechanism and gain a bootloader shell via the UART interface. This is achieved by inducing a read error from the SPI flash memory during the...

6.1CVSS0.00198EPSS
Exploits0References3
Cvelist
Cvelistadded 2026/01/14 12:0 a.m.17 views

CVE-2025-65396

A vulnerability in the boot process of Blurams Flare Camera version 24.1114.151.929 and earlier allows a physically proximate attacker to hijack the boot mechanism and gain a bootloader shell via the UART interface. This is achieved by inducing a read error from the SPI flash memory during the...

0.00198EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2026/01/14 12:0 a.m.4 views

CVE-2025-65396

A vulnerability in the boot process of Blurams Flare Camera version 24.1114.151.929 and earlier allows a physically proximate attacker to hijack the boot mechanism and gain a bootloader shell via the UART interface. This is achieved by inducing a read error from the SPI flash memory during the...

6.1AI score0.00198EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2026/01/14 12:0 a.m.5 views

CVE-2025-65396

A vulnerability in the boot process of Blurams Flare Camera version 24.1114.151.929 and earlier allows a physically proximate attacker to hijack the boot mechanism and gain a bootloader shell via the UART interface. This is achieved by inducing a read error from the SPI flash memory during the...

6.1CVSS5.6AI score0.00198EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2026/01/14 12:0 a.m.6 views

PT-2026-2919

Name of the Vulnerable Software and Affected Versions Blurams Flare Camera versions 24.1114.151.929 and earlier Description A flaw exists in the boot process of the Blurams Flare Camera that allows a nearby attacker to take control of the boot mechanism and obtain a bootloader shell through the...

6.1CVSS6.3AI score0.00198EPSS
Exploits0References5
CVE
CVEadded 2026/01/14 12:0 a.m.14 views

CVE-2025-65396

Affected product: Blurams Flare Camera (versions 24.1114.151.929 and earlier). Vulnerability cause: In the boot process, a read error from the SPI flash memory is induced by shorting a data pin to ground, allowing a physically proximate attacker to hijack the boot mechanism and gain a bootloader ...

6.1CVSS6.1AI score0.00198EPSS
Exploits0References3Affected Software1
CVE
CVEadded 2025/10/04 7:31 a.m.16 views

CVE-2025-39949

CVE-2025-39949 is a Linux kernel vulnerability in the qed protection override dump path. The firmware could return more GRC elements than the allocated dump buffer, enabling a write past the end of the buffer and causing a kernel panic (BUG: unable to handle kernel paging request). The issue is f...

5.5CVSS6.2AI score0.00134EPSS
Exploits0References7Affected Software1
Positive Technologies
Positive Technologiesadded 2025/08/28 12:0 a.m.3 views

PT-2025-35101

Name of the Vulnerable Software and Affected Versions: Meitrack T366G-L GPS Tracker devices affected versions not specified Description: The SPI flash chip Winbond 25Q64JVSIQ in Meitrack T366G-L GPS Tracker devices is accessible without authentication or tamper protection. An attacker with physic...

2.4CVSS6AI score0.00245EPSS
Exploits0References4
CNVD
CNVDadded 2025/07/11 12:0 a.m.4 views

Marvell QConvergeConsole Path Traversal Vulnerability (CNVD-2025-20442)

Marvell QConvergeConsole is a unified adapter management software across data centers from Marvell USA. A path traversal vulnerability exists in Marvell QConvergeConsole due to an error in the compressFirmwareDumpFiles method. An attacker could exploit this vulnerability to disclose information i...

7.5CVSS6.5AI score0.01256EPSS
Exploits0References1
CNNVD
CNNVDadded 2025/07/07 12:0 a.m.3 views

Marvell QConvergeConsole 路径遍历漏洞

Marvell QConvergeConsole is a unified adapter management software across data centers from Marvell USA. A path traversal vulnerability exists in Marvell QConvergeConsole due to an error in the compressFirmwareDumpFiles method. An attacker could exploit this vulnerability to disclose information i...

7.5CVSS7.2AI score0.01256EPSS
Exploits0References1
CNNVD
CNNVDadded 2025/05/20 12:0 a.m.1 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel, which stems from a memory copy out of bounds in the bnxten module when ethtool fetches a firmware dump, which could lead to...

5.5CVSS6.3AI score0.0016EPSS
Exploits0References7
OSV
OSVadded 2023/12/12 10:15 a.m.3 views

CVE-2022-42784

A vulnerability has been identified in LOGO! 12/24RCE 6ED1052-1MD08-0BA1 All versions = V8.3, LOGO! 12/24RCEo 6ED1052-2MD08-0BA1 All versions = V8.3, LOGO! 230RCE 6ED1052-1FB08-0BA1 All versions = V8.3, LOGO! 230RCEo 6ED1052-2FB08-0BA1 All versions = V8.3, LOGO! 24CE 6ED1052-1CC08-0BA1 All versio...

6.8CVSS5.7AI score0.00248EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2023/12/12 12:0 a.m.5 views

PT-2023-14146 · Siemens · Siplus Logo! 12/24Rce +6

Name of the Vulnerable Software and Affected Versions: LOGO! 12/24RCE versions 8.3 and later LOGO! 12/24RCEo versions 8.3 and later LOGO! 230RCE versions 8.3 and later LOGO! 230RCEo versions 8.3 and later LOGO! 24CE versions 8.3 and later LOGO! 24CEo versions 8.3 and later LOGO! 24RCE versions 8....

7.6CVSS6.9AI score0.00248EPSS
Exploits0References4
OSV
OSVadded 2022/12/26 6:15 a.m.2 views

CVE-2021-35954

fastrack Reflex 2.0 W307SREFLEXv90.89 Activity Tracker allows physically proximate attackers to dump the firmware, flash custom malicious firmware, and brick the device via the Serial Wire Debug SWD feature...

8.1CVSS5.8AI score0.00325EPSS
Exploits0References2
CNNVD
CNNVDadded 2022/12/26 12:0 a.m.2 views

fastrack Reflex 安全漏洞

The fastrack Reflex is a smart wearable device from fastrack. A security vulnerability exists in fastrack Reflex version 2.0 W307SREFLEXv90.89, which stems from a vulnerability that could allow a physically proximate attacker to dump the firmware, flash customized malicious firmware, and brick th...

8.1CVSS7.7AI score0.00325EPSS
Exploits0References3
exploitpack
exploitpackadded 2013/10/22 12:0 a.m.12 views

ARRIS DG860A - NVRAM Backup Password Disclosure

ARRIS DG860A - NVRAM Backup Password Disclosure ! /usr/bin/env ruby ARRIS DG860A NVRAM Backup 'Compressor/Decompressor', it really does xor? Gleaned from scmix executable in firmware dump. Backup file is world readable without authentication and contains password information in plain text...

0.4AI score
Exploits0
Exploit DB
Exploit DBadded 2013/10/22 12:0 a.m.27 views

ARRIS DG860A - NVRAM Backup Password Disclosure

!/usr/bin/env ruby ARRIS DG860A NVRAM Backup 'Compressor/Decompressor', it really does xor? Gleaned from scmix executable in firmware dump. Backup file is world readable without authentication and contains password information in plain text. box:arris-dev cosmo$ wget http://192.168.0.1/router.dat...

7AI score
Exploits0
Packet Storm
Packet Stormadded 2013/10/18 12:0 a.m.39 views

ARRIS DG860A NVRAM Backup Compressor / Decompressor

! /usr/bin/env ruby ARRIS DG860A NVRAM Backup 'Compressor/Decompressor', it really does xor? Gleaned from scmix executable in firmware dump. Backup file is world readable without authentication and contains password information in plain text. box:arris-dev cosmo$ wget http://192.168.0.1/router.da...

0.7AI score
Exploits0
Rows per page
Query Builder