86 matches found
hdd-toolkit
HDD Firmware Toolkit A comprehensive Python toolkit for dumpi...
MiracleLinux 9 : microcode_ctl-20220207-1.20220510.1.el9 (AXBA:2022-4034:07)
The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXBA:2022-4034:07 advisory. - Sensitive information accessible by physical probing of JTAG interface for some IntelR Processors with SGX may allow an unprivileged user to...
CVE-2019-18827
On Barco ClickShare Button R9861500D01 devices before firmware version 1.9.0 JTAG access is disabled after ROM code execution. This means that JTAG access is possible when the system is running code from ROM before handing control over to embedded firmware...
CVE-2025-65822
The ESP32 system on a chip SoC that powers the Meatmeet Pro was found to have JTAG enabled. By leaving JTAG enabled on an ESP32 in a commercial product an attacker with physical access to the device can connect over this port and reflash the device's firmware with malicious code which will be...
CVE-2025-65822
The ESP32 system on a chip SoC that powers the Meatmeet Pro was found to have JTAG enabled. By leaving JTAG enabled on an ESP32 in a commercial product an attacker with physical access to the device can connect over this port and reflash the device's firmware with malicious code which will be...
EUVD-2025-200261
The Chassis Management Board in Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allows a physically proximate attacker to obtain debug access and escalate privileges by bypassing the tamper label and opening the chassis without leaving evidence, and accessing th...
CVE-2025-59693
The Chassis Management Board in Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allows a physically proximate attacker to obtain debug access and escalate privileges by bypassing the tamper label and opening the chassis without leaving evidence, and accessing th...
CVE-2025-59693
The Chassis Management Board in Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allows a physically proximate attacker to obtain debug access and escalate privileges by bypassing the tamper label and opening the chassis without leaving evidence, and accessing th...
Barco ClickShare Devices Improper Authorization (CVE-2019-18827)
On Barco ClickShare Button R9861500D01 devices before firmware version 1.9.0 JTAG access is disabled after ROM code execution. This means that JTAG access is possible when the system is running code from ROM before handing control over to embedded firmware. This plugin only works with Tenable.ot...
EUVD-2019-8529
Malware in sbrugna...
EUVD-2022-15226
Malicious code in bioql PyPI...
EUVD-2024-48213
Malicious code in bioql PyPI...
EUVD-2025-4191
Malicious code in bioql PyPI...
EUVD-2024-43155
Malicious code in bioql PyPI...
EUVD-2025-18989
Malicious code in bioql PyPI...
CVE-2025-48468
Successful exploitation of the vulnerability could allow an attacker that has physical access to interface with JTAG to inject or modify firmware...
CVE-2025-48468
Successful exploitation of the vulnerability could allow an attacker that has physical access to interface with JTAG to inject or modify firmware...
CVE-2025-48468 Open JTAG Debug Port
Successful exploitation of the vulnerability could allow an attacker that has physical access to interface with JTAG to inject or modify firmware...
CVE-2025-48468 Open JTAG Debug Port
Successful exploitation of the vulnerability could allow an attacker that has physical access to interface with JTAG to inject or modify firmware...
CVE-2025-48468
CVE-2025-48468 centers on an open JTAG debug port that, with physical access, lets an attacker inject or modify firmware. Multiple connected sources tie this to Advantech industrial controllers (e.g., WISE-4010LAN, WISE-4050LAN, WISE-4060LAN) and describe the root cause as reliance on a JTAG inte...