54 matches found
EUVD-2004-0011
Malware in sbrugna...
EUVD-2003-1012
Malware in sbrugna...
EUVD-1999-1392
Malware in sbrugna...
EUVD-2021-16239
Malware in sbrugna...
EUVD-2022-27591
Malicious code in bioql PyPI...
kernel: spi: nxp-fspi: fix the KASAN report out-of-bounds bug
In the Linux kernel, the following vulnerability has been resolved: spi: nxp-fspi: fix the KASAN report out-of-bounds bug Change the memcpy length to fix the out-of-bounds issue when writing the data that is not 4 byte aligned to TX FIFO. To reproduce the issue, write 3 bytes data to NOR chip. dd...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the mtkhwlrogetfdirentry function not validating the validity of fsp-location, which could lead to an...
CVE-2024-45656
IBM Flexible Service Processor FSP FW860.00 through FW860.B3, FW950.00 through FW950.C0, FW1030.00 through FW1030.61, FW1050.00 through FW1050.21, and FW1060.00 through FW1060.10 has static credentials which may allow network users to gain service privileges to the FSP...
CVE-2024-45656
CVE-2024-45656 : IBM Flexible Service Processor (FSP) firmware with static credentials affects multiple versions (FW860.00–FW860.B3, FW950.00–FW950.C0, FW1030.00–FW1030.61, FW1050.00–FW1050.21, FW1060.00–FW1060.10). The root cause is hard-coded/static credentials that may allow a network user to ...
fsp-group.com Cross Site Scripting vulnerability OBB-3854117
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
fsp-g.com Cross Site Scripting vulnerability OBB-3844950
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
fsp-polizia.it Improper Access Control vulnerability OBB-3840596
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Security Bulletin: This Power System update is being released to address CVE-2023-25683
Summary The PowerVM Hypervisor could allow an attacker to obtain sensitive information if they gain service access to the HMC Vulnerability Details CVEID:CVE-2023-25683 DESCRIPTION: IBM PowerVM Hypervisor could allow an attacker to obtain sensitive information if they gain service access to the...
SUSE CVE-2007-3961
Off-by-one error in the fspreaddirr function in fsplib.c in fsplib before 0.9 allows remote attackers to cause a denial of service via a directory entry whose length is exactly MAXNAMELEN, which prevents a terminating null byte from being added...
CVE-2022-22445
An attacker that gains service access to the FSP POWER9 only or gains admin authority to a partition can compromise partition firmware...
CVE-2022-22445
An attacker that gains service access to the FSP POWER9 only or gains admin authority to a partition can compromise partition firmware...
CVE-2022-22445
IBM PowerVM Hypervisor on POWER9 systems is affected by CVE-2022-22445. An attacker gaining service access to the FSP or admin authority in a partition can compromise partition firmware. The IBM advisory and related sources specify affected PowerVM Hypervisor versions FW1010 and later, FW950 and ...
Security Bulletin: An attacker that gains service access to the FSP (POWER9 only) or gains admin authority to a partition can compromise partition firmware.
Summary PowerVM partition firmware is the portion that executes in each partition during boot. On POWER9 systems an attacker that gains service access to the FSP can compromise partition firmware for any partition configured on the system. On all affected systems an attacker that gains admin...
CVE-2022-22309
The POWER systems FSP is vulnerable to unauthenticated logins through the serial port/TTY interface. This vulnerability can be more critical if the serial port is connected to a serial-over-lan device. IBM X-Force ID: 217095...
CVE-2022-22309
The POWER systems FSP is vulnerable to unauthenticated logins through the serial port/TTY interface. This vulnerability can be more critical if the serial port is connected to a serial-over-lan device. IBM X-Force ID: 217095...