Denial Of Service (DOS)

Kernel is vulnerable to out of bound reads. A KVM guest using SEV-ES can trigger out-of-bounds reads and writes in the host kernel via the SVMEXITIOIO exit reason...

Memory Corruption Vulnerability in MP500 PC Software at Taian Technology (Wuxi) Co.

Ltd. is a wholly foreign owned enterprise established in China on July 1, 2000 by Antai International Investment Singapore Pte Ltd, a subsidiary of TECO Group, a renowned Taiwanese multinational corporation. A memory corruption vulnerability exists in the MP500 host computer software of Taian...

Authentication Bypass Vulnerability in NApro

NAPro is a PLC programming software developed by Nanda Aotuo Technology Jiangsu Co. NApro suffers from an authentication bypass vulnerability, which can be exploited by an attacker to control a PLC and perform arbitrary operations via modified host computer software...

ALPINE-CVE-2017-7526

libgcrypt before version 1.7.8 is vulnerable to a cache side-channel attack resulting into a complete break of RSA-1024 while using the left-to-right method for computing the sliding-window expansion. The same attack is believed to work on RSA-2048 with moderately more computation. This...

Universal Serial aBUSe: USaBUSe

Universal Serial aBUSe Universal Serial aBUSe is a project released at Defcon 24 by Rogan Dawes. The team took some fairly common attacks fake keyboards in small USB devices that type nasty things and extended them to provide us with a bi-directional binary channel over our own wifi network to gi...