33 matches found
EUVD-2020-5721
Malware in sbrugna...
EUVD-2020-5719
Malware in sbrugna...
EUVD-2020-5716
Malware in sbrugna...
EUVD-2024-19356
Malicious code in bioql PyPI...
CVE-2024-21741
GigaDevice GD32E103C8T6 devices have Incorrect Access Control...
CVE-2024-21741
GigaDevice GD32E103C8T6 devices have Incorrect Access Control...
GigaDevice GD32E103C8T6 Security Vulnerability
The GigaDevice GD32E103C8T6 is a microcontroller unit from China's MegaDevice Corporation GigaDevice. A security vulnerability exists in the GigaDevice GD32E103C8T6 that originates from incorrect access control of the device...
CVE-2024-21741
GigaDevice GD32E103C8T6 devices have Incorrect Access Control...
CVE-2024-21741
CVE-2024-21741 affects GigaDevice GD32E103C8T6 devices due to Incorrect Access Control. According to CVSS 3.1 data, it is a remote, network-based issue with no privileges required, no user interaction, and a base score of 9.8 (Critical). The vulnerability concerns the device’s access control mech...
PT-2024-38: Improper Access Control in GigaDevice Semiconductor products
The vulnerability of improper access control was identified in series GD32E23x and GD32E50x of GigaDevice Semiconductor products. The vulnerability allows an attacker to obtain a snapshot of SRAM or change its state. The vulnerability can be exploited when checking the protection state...
PT-2024-39: Readout protection level bypass before the first power-on cycle in GigaDevice Semiconductor products
The vulnerability of readout protection level bypass before the first power-on cycle was identified in series GD32F1x0, GD32F4xx, GD32F3x0 of GigaDevice Semiconductor products. The discovered vulnerability can be exploited by an attacker to take a snapshot of RAM before initialization or to chang...
PT-2024-40: Readout protection level bypass in GigaDevice Semiconductor products
The vulnerability was identified in in series GD32E23x, GD32F20x, GD32F1x0, GD32F4xx, GD32F30x, GD32C10x, GD32E10x, GD32E50x of GigaDevice Semiconductor products. The vulnerability can be exploited by an attacker to run arbitrary shell code in SRAM. Vulnerability status: Confirmed by research Dat...
Gigadevice GD32VF103 Firmware Extraction Vulnerability
The Gigadevice GD32VF103 is a Mega Easy microcontroller device. The Gigadevice GD32VF103 Flash Readout Protection suffers from a firmware extraction vulnerability that can be exploited by a physically capable access attacker to submit a special request to obtain firmware from the debug interface...
Gigadevice GD32F103 Code Execution Vulnerability
The Gigadevice GD32F103 is a Mega Easy microcontroller device. The Gigadevice GD32F103 security protection suffers from a code execution vulnerability that can be exploited by a physically-accessible attacker to submit a special request, redirect control flow and execute arbitrary code...
CVE-2020-13469
The flash memory readout protection in Gigadevice GD32VF103 devices allows physical attackers to extract firmware via the debug interface by utilizing the CPU...
CVE-2020-13472
The flash memory readout protection in Gigadevice GD32F103 devices allows physical attackers to extract firmware via the debug interface by utilizing the DMA module...
CVE-2020-13470
Gigadevice GD32F103 and GD32F130 devices allow physical attackers to extract data via the probing of easily accessible bonding wires and de-obfuscation of the observed data...
CVE-2020-13465
The security protection in Gigadevice GD32F103 devices allows physical attackers to redirect the control flow and execute arbitrary code via the debug interface...
CVE-2020-13468
Gigadevice GD32F130 devices allow physical attackers to escalate their debug interface permissions via fault injection into inter-IC bonding wires which have insufficient physical protection...
Design/Logic Flaw
Gigadevice GD32F103 and GD32F130 devices allow physical attackers to extract data via the probing of easily accessible bonding wires and de-obfuscation of the observed data...