CVE-2020-10044

A vulnerability has been identified in SICAM MMU All versions V2.05, SICAM SGU All versions, SICAM T All versions V2.18. An attacker with access to the network could be able to install specially crafted firmware to the device...

EUVD-2017-3879

Malware in sbrugna...

EUVD-2019-10437

Malware in sbrugna...

EUVD-2019-18908

Malware in sbrugna...

EUVD-2023-30069

Malicious code in bioql PyPI...

EUVD-2023-32073

Malicious code in bioql PyPI...

EUVD-2024-54071

Malicious code in bioql PyPI...

EUVD-2023-30071

Malicious code in bioql PyPI...

EUVD-2023-30070

Malicious code in bioql PyPI...

CVE-2023-26244

An issue was discovered in the Hyundai Gen5WL in-vehicle infotainment system AEEPEEUR.S5WL001.001.211214. The AppDMClient binary file, which is used during the firmware installation process, can be modified by an attacker to bypass the digital signature check of AppUpgrade and .lge.upgrade.xml...

CVE-2023-26246

An issue was discovered in the Hyundai Gen5WL in-vehicle infotainment system AEEPEEUR.S5WL001.001.211214. The AppUpgrade binary file, which is used during the firmware installation process, can be modified by an attacker to bypass the digital signature check. This indirectly allows an attacker to...

CVE-2019-9536

Apple iPhone 3GS bootrom malloc implementation returns a non-NULL pointer when unable to allocate memory, aka 'alloc8'. An attacker with physical access to the device can install arbitrary firmware...

CVE-2019-5158

An exploitable firmware downgrade vulnerability exists in the firmware update package functionality of the WAGO e!COCKPIT automation software v1.6.1.5. A specially crafted firmware update file can allow an attacker to install an older firmware version while the user thinks a newer firmware versio...

CVE-2024-47573

This CVE concerns FortiNDR where an improper validation of an integrity check value (CWE-354) in FortiNDR versions <= 7.4.2, <= 7.2.1, <= 7.1.1, and

CVE-2025-27257

Insufficient Verification of Data Authenticity vulnerability in GE Vernova UR IED family devices allows an authenticated user to install a modified firmware. The firmware signature verification is enforced only on the client-side dedicated software Enervista UR Setup, allowing the integration che...

CVE-2024-56336

The CVE-2024-56336 issue affects Siemens SINAMICS S200 devices with serial prefixes SZVS8/SZVS9/SZVS0/SZVSN and FS 02, where an unlocked bootloader enables injection of malicious code or installation of untrusted firmware. The vulnerability stems from the unsecured bootloader, compromising device...

CVE-2025-27257

Insufficient Verification of Data Authenticity vulnerability in GE Vernova UR IED family devices allows an authenticated user to install a modified firmware. The firmware signature verification is enforced only on the client-side dedicated software Enervista UR Setup, allowing the integration che...

CVE-2025-27257

CVE-2025-27257 affects the GE Vernova UR IED family devices. The root cause is insufficient data authenticity verification, with firmware signature checks enforced only by the client-side Enervista UR Setup, enabling an authenticated user to bypass integration checks and install modified firmware...

CVE-2025-27257

Insufficient Verification of Data Authenticity vulnerability in GE Vernova UR IED family devices allows an authenticated user to install a modified firmware. The firmware signature verification is enforced only on the client-side dedicated software Enervista UR Setup, allowing the integration che...

Security update for nvidia-open-driver-G06-signed

This update for nvidia-open-driver-G06-signed fixes the following issues: Make sure the correct FW package is installed on non-CUDA. only obsolete 555 CUDA driver/firmware packages For CUDA: update version to 565.57.01 Add 'dummy' firmware package on SLE to work around update issues. On SLE, the...