CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2026/04/08 6:20 p.m.•3 views

CVE-2026-20709

This CVE (CVE-2026-20709) concerns the use of a default cryptographic key embedded in hardware on select Intel processors (Pentium Silver, Celeron J/N series). The root cause is a default key in hardware that could be exploited by a hardware reverse engineer with privileged access and high attack...

6.6CVSS5.8AI score0.00019EPSS

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-24846

Malware in sbrugna...

6.9CVSS6.5AI score0.00042EPSS

SUSE CVE•added 2024/08/18 2:2 a.m.•0 views

SUSE CVE-2024-43815

In the Linux kernel, the following vulnerability has been resolved: crypto: mxs-dcp - Ensure payload is zero when using key slot We could leak stack memory through the payload field when running AES with a key from one of the hardware's key slots. Fix this by ensuring the payload field is set to ...

7.1CVSS6.4AI score0.00017EPSS

Exploits0References3

NVD•added 2024/08/17 10:15 a.m.•12 views

CVE-2024-43815

7.1CVSS0.00017EPSS

Debian CVE•added 2024/08/17 9:21 a.m.•12 views

CVE-2024-43815

7.1CVSS5.5AI score0.00017EPSS

OSV•added 2024/08/17 9:21 a.m.•1 views

CVE-2024-43815 crypto: mxs-dcp - Ensure payload is zero when using key slot

7.1CVSS6.4AI score0.00017EPSS

Exploits0References5

Vulnrichment•added 2024/08/17 9:21 a.m.•18 views

CVE-2024-43815 crypto: mxs-dcp - Ensure payload is zero when using key slot

6.7AI score0.00017EPSS

CNNVD•added 2024/08/17 12:0 a.m.•1 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the mxs-dcp component failing to ensure that the payload field is zero when using a hardware key, resulting ...

7.1CVSS5.2AI score0.00017EPSS

Exploits0References4

Malwarebytes•added 2024/06/14 4:29 p.m.•42 views

Truist bank confirms data breach

On Wednesday June 12, 2024, a well-known dark web data broker and cybercriminal acting under the name "Sp1d3r" offered a significant amount of data allegedly stolen from Truist Bank for sale. Truist is a US bank holding company and operates 2,781 branches in 15 states and Washington DC. By assets...

7.7AI score

Malwarebytes•added 2023/02/21 5:0 a.m.•11 views

How to set up two-factor authentication on Twitter using a hardware key

If you use text based authentication as an additional level of security for your Twitter account, you may be aware that this option will be reserved for paying Twitter Blue subscribers come mid-March. This post explains how to enable hardware key authentication instead. Enabling a hardware securi...

7.6AI score

Wired Threat Level•added 2022/12/30 1:0 p.m.•23 views

The Password Isn’t Dead Yet. You Need a Hardware Key

Any multifactor authentication adds protection, but a physical token is the best bet when it really counts...

1.5AI score

CNVD•added 2021/11/05 12:0 a.m.•21 views

Boston Scientific ZOOM LATITUDE Programmer/Recorder/Monitor (PRM) Model 3120 has an unspecified vulnerability

The Boston Scientific ZOOM LATITUDE Programmer/Recorder/Monitor PRM Model 3120 is a portable cardiac rhythm management Crm programming system from Boston Scientific, Inc. The Boston Scientific ZOOM LATITUDE Programmer/Recorder/Monitor PRM Model 3120 contains a security vulnerability that could be...

6.9CVSS1.7AI score0.00042EPSS

NVD•added 2021/10/04 6:15 p.m.•9 views

CVE-2021-38394

An attacker with physical access to the device can extract the binary that checks for the hardware key and reverse engineer it, which could be used to create a physical duplicate of a valid hardware key. The hardware key allows access to special settings when inserted...

6.9CVSS0.00042EPSS

Prion•added 2021/10/04 6:15 p.m.•12 views

Design/Logic Flaw

6.9CVSS6.3AI score0.00042EPSS

Cvelist•added 2021/10/04 5:34 p.m.•8 views

CVE-2021-38394 Missing Protection against Hardware Reverse Engineering Using Integrated Circuit Imaging Techniques for Boston Scientific Zoom Latitude

6.2CVSS6.4AI score0.00042EPSS

CVE•added 2021/10/04 5:34 p.m.•37 views

CVE-2021-38394

CVE-2021-38394 pertains to Boston Scientific ZOOM LATITUDE Programmer/Recorder/Monitor Model 3120. The EUVD/CNNVD and ICS-CISA sources in the connected set describe a vulnerability: missing protection against hardware reverse engineering using IC imaging techniques, enabling an attacker with phys...

6.9CVSS6.3AI score0.00042EPSS

Exploits0References1Affected Software1

CNNVD•added 2021/09/30 12:0 a.m.•2 views

Boston Scientific Zoom Latitude Programmer/Recorder/Monitor Model 3120 安全漏洞

6.9CVSS6.4AI score0.00042EPSS

Exploits0References5

Malwarebytes•added 2021/03/22 9:33 p.m.•32 views

How to enable Facebook’s hardware key authentication for iOS and Android

Since 2017 desktop users have had the opportunity to use physical security keys to log in to their Facebook accounts. Now iOS and Android users have the same option too. Physical security keys are a more secure option for two-factor authentication 2FA than SMS which is vulnerable to SIM swap...

7AI score