31 matches found
CVE-2025-1037
By making minor configuration changes to the TropOS 4th Gen device, an authenticated user with the ability to run user level shell commands can enable access via secure shell SSH to an unrestricted root shell. This is possible through abuse of a particular set of scripts and executables that allo...
CellSecInspector: Safeguarding Cellular Networks Via Automated Security Analysis on Specifications
The complexity, interdependence, and rapid evolution of 3GPP specifications present fundamental challenges for ensuring the security of modern cellular networks. Manual reviews and existing automated approaches, which often depend on rule-based parsing or small sets of manually crafted security...
EUVD-2025-36506
The “Diagnostics Tools” page of the web-based configuration utility does not properly validate user-controlled input, allowing an authenticated user with high privileges to inject commands into the command shell of the TropOS 4th Gen device. The injected commands can be exploited to execute sever...
CVE-2025-1037
By making minor configuration changes to the TropOS 4th Gen device, an authenticated user with the ability to run user level shell commands can enable access via secure shell SSH to an unrestricted root shell. This is possible through abuse of a particular set of scripts and executables that allo...
PT-2025-44153
Name of the Vulnerable Software and Affected Versions TropOS 4th Gen affected versions not specified Description An authenticated user with the ability to run user level shell commands can enable access via secure shell SSH to an unrestricted root shell by making minor configuration changes to th...
Hitachi TropOS 4th Gen 安全漏洞
Hitachi TropOS 4th Gen is a wireless communication device from Hitachi, Ltd Hitachi, Japan. A security vulnerability exists in Hitachi TropOS 4th Gen, which originates from misuse of scripts and executables, and could allow an unauthorized user to gain unrestricted root shell access...
CVE-2025-41108
The communication protocol implemented in Ghost Robotics Vision 60 v0.27.2 could allow an attacker to send commands to the robot from an external attack station, impersonating the control station tablet and gaining unauthorised full control of the robot. The absence of encryption and authenticati...
Linux Distros Unpatched Vulnerability : CVE-2024-21853
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper finite state machines FSMs in the hardware logic in some 4th and 5th Generation IntelR XeonR Processors may allow an authorized user to potentially...
CVE-2024-53946
The KuWFi 4G LTE AC900 router 1.0.13 is vulnerable to Cross-Site Request Forgery CSRF on its web management interface. This vulnerability allows an attacker to trick an authenticated admin user into performing unauthorized actions, such as exploiting a command injection vulnerability in...
2025.2 IPU - Intel® TDX Module Advisory
Summary: A potential security vulnerability in Intel® Trust Domain Extensions TDX Module may allow escalation of privilege. Intel is releasing firmware updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2025-20044 Description: Improper locking for some Intel® TDX...
Astra Linux – Vulnerability in Intel Microcode
Improper finite state machines in the hardware logic of some 4th and 5th generation IntelR XeonR processors may allow an authorized user to potentially enable denial of service via local access...
The vulnerability of the Intel Alias Checking Trusted Module (Intel ACTM), a microprogramming software component for Intel’s 4th and 5th generation processors, allows attackers to exploit it to increase their privileges.
The vulnerability of the Intel Alias Checking Trusted Module Intel ACTM, a microprogramming software component of Intel’s 4th and 5th generation processors, is related to synchronization errors when using common resources. Exploiting this vulnerability can allow attackers to increase their...
DEBIAN-CVE-2024-21853
Improper finite state machines FSMs in the hardware logic in some 4th and 5th Generation IntelR XeonR Processors may allow an authorized user to potentially enable denial of service via local access...
UBUNTU-CVE-2024-21853
Improper finite state machines FSMs in the hardware logic in some 4th and 5th Generation IntelR XeonR Processors may allow an authorized user to potentially enable denial of service via local access...
PT-2024-19095
Name of the Vulnerable Software and Affected Versions Intel Xeon Processors versions 4th and 5th Generation Description The issue is related to improper finite state machines FSMs in the hardware logic of some Intel Xeon Processors. This could potentially allow an authorized user to enable denial...
ALPINE-CVE-2024-24980
Protection mechanism failure in some 3rd, 4th, and 5th Generation IntelR XeonR Processors may allow a privileged user to potentially enable escalation of privilege via local access...
kernel: dmaengine/idxd: hardware erratum allows potential security problem with direct access by untrusted application
Hardware logic with insecure de-synchronization in IntelR DSA and IntelR IAA for some IntelR 4th or 5th generation XeonR processors may allow an authorized user to potentially enable escalation of privilege local access...
Intel Xeon Processors Security Vulnerability
Intel Xeon Processors is an Intel Xeon family of central processing units CPUs from Intel Corporation. A security vulnerability exists in Intel Xeon Processors 3rd and 4th generation, which stems from an elevation of privilege vulnerability...
Intel Xeon Processors Security Vulnerability
Intel Xeon Processors is an Intel Xeon family of central processing units CPUs from Intel Corporation. A security vulnerability exists in Intel Xeon Processors 3rd and 4th generations, which stems from the presence of an elevation of privilege vulnerability...
PT-2024-2540 · Intel · Intel Xeon Processors
Name of the Vulnerable Software and Affected Versions: Intel Xeon Processors affected versions not specified Description: The issue is related to improper access control in the on-chip debug and test interface of some 4th Generation Intel Xeon Processors when using Intel SGX or Intel TDX. This ma...