AMD EPYC 9005 Series 安全漏洞

The AMD EPYC 9005 Series is a series of processors developed by Advanced Microelectronics Devices, Inc. AMD. There are security vulnerabilities in the AMD EPYC 9005 Series. These vulnerabilities stem from improper handling of error conditions during host failures, which may allow privileged local...

AMD CPU security vulnerabilities

AMD CPUs are a series of CPUs produced by Advanced Microelectronics Devices, Inc. AMD. There are security vulnerabilities in AMD CPUs, which stem from write-condition issues. These vulnerabilities could allow administrators with privileges to modify the CPU’s pipeline configuration, thereby...

EUVD-2020-5722

Malware in sbrugna...

EUVD-2023-34820

Malicious code in bioql PyPI...

iio: imu: st_lsm6dsx: fix possible lockup in st_lsm6dsx_read_tagged_fifo

...

The vulnerability of the Connection Manager module (con_mgr) in microprogrammed network devices from ASR Microelectronics, such as ASR1803L, ASR1806, ASR1901, and ASR1903L, allows a perpetrator to gain unauthorized access to protected information or cause service failures.

The vulnerability of the Connection Manager conmgr module in microprogrammed network devices from ASR Microelectronics, such as ASR1803L, ASR1806, ASR1901, and ASR1903L, is related to improper cleaning or release of resources. Exploiting this vulnerability can allow an attacker to gain unauthoriz...

The vulnerability of microprogrammed network boards from ASR Microelectronics, such as ASR1803L, ASR1806, ASR1901, and ASR1903L, arises due to improper cleaning or release of resources. This allows attackers to gain unauthorized access to protected information or cause service failures.

The vulnerability of microprogrammed network board software from ASR Microelectronics, including models ASR1803L, ASR1806, ASR1901, and ASR1903L, stems from improper cleaning or release of resources during the processing of the pb.c file router/phonebook/pb.c. Exploiting this vulnerability can...

The vulnerability of the Traffic Service service (traffic_stat/traffic_service/traffic_service.c) in the network device software developed by ASR Microelectronics, including models ASR1803L, ASR1806, ASR1901, and ASR1903L, allows a malicious actor to gain unauthorized access to protected information or cause service failures.

The vulnerability of the Traffic Service service trafficstat/trafficservice/trafficservice.c of the network card microprogramming software from ASR Microelectronics, models ASR1803L, ASR1806, ASR1901, and ASR1903L, is related to improper cleaning or release of resources. Exploiting this...

The vulnerability of the TR-069 protocol implementation (tr069/tr069_uci.c) in network board microcomputer software from ASR Microelectronics, such as ASR1803L, ASR1806, ASR1901, and ASR1903L, allows a malicious actor to gain unauthorized access to protected information or cause service failures.

The vulnerability of the TR-069 protocol implementation tr069/tr069uci.c of networking devices from ASR Microelectronics’ ASR1803L, ASR1806, ASR1901, and ASR1903L models is related to improper cleaning or release of resources. Exploiting this vulnerability can allow an unauthorized attacker to ga...

The vulnerability of microprogrammed network boards from ASR Microelectronics, such as ASR1803L, ASR1806, ASR1901, and ASR1903L, arises due to improper cleaning or release of resources. This allows attackers to gain unauthorized access to protected information or cause service failures.

The vulnerability of microprogrammed network board software from ASR Microelectronics, including models ASR1803L, ASR1806, ASR1901, and ASR1903L, stems from improper cleaning or release of resources during the processing of the router/sms/sms.c file. Exploiting this vulnerability can allow an...

The vulnerability of microprogrammed network boards from ASR Microelectronics, such as ASR1803L, ASR1806, ASR1901, and ASR1903L, arises due to improper cleaning or release of resources. This allows attackers to gain unauthorized access to protected information or cause service failures.

The vulnerability of microprogrammed network board software from ASR Microelectronics, including models ASR1803L, ASR1806, ASR1901, and ASR1903L, stems from improper cleaning or release of resources during the processing of the pbwork-queue.c file router/phonebook/pbwork-queue.c. Exploitation of...

The vulnerability of microprogrammed network board software from ASR Microelectronics, such as ASR1803L, ASR1806, ASR1901, and ASR1903L, arises from the execution of operations beyond the buffer boundaries in memory. This allows attackers to cause system failures.

The vulnerability of microprogrammed network board software from ASR Microelectronics, including models ASR1803L, ASR1806, ASR1901, and ASR1903L, arises due to the operation of an action that goes beyond the buffer boundaries in memory during the processing of the file devapi.c...

The vulnerability of the TR-069 protocol implementation (tr069/tr098.c) of the network board microprogramming software from ASR Microelectronics, including models ASR1803L, ASR1806, ASR1901, and ASR1903L, allows a malicious actor to gain unauthorized access to protected information or cause service failures.

The vulnerability of the TR-069 protocol implementation tr069/tr098.c of the network board microcomputer software ASR Microelectronics ASR1803L, ASR1806, ASR1901, and ASR1903L is related to improper cleaning or release of resources. Exploiting this vulnerability can allow an unauthorized attacker...

The vulnerability of the Connection Manager module (con_mgr) in microprogrammed network devices from ASR Microelectronics, such as ASR1803L, ASR1806, ASR1901, and ASR1903L, allows a perpetrator to gain unauthorized access to protected information or cause service failures.

The vulnerability of the Connection Manager conmgr module in microprogrammed network devices from ASR Microelectronics, such as ASR1803L, ASR1806, ASR1901, and ASR1903L, is related to improper cleaning or release of resources. Exploiting this vulnerability can allow an attacker to gain unauthoriz...

CVE-2023-30400

An issue was discovered in Anyka Microelectronics AK3918EV300 MCU v18. A command injection vulnerability in the network configuration script within the MCU's operating system allows attackers to perform arbitrary command execution via a crafted wifi SSID or password...

USN-7289-2 linux-azure-5.15, linux-azure-fde-5.15, linux-oracle-5.15 vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - x86 architecture; - Block layer subsystem; - ACPI drivers; - GPU drivers; - HID subsystem; -...

AMD NPU driver 输入验证错误漏洞

AMD NPU driver is a driver for an NPU module from UltraMicroelectronics AMD. A security vulnerability exists in AMD NPU driver that stems from incorrect input validation. An attacker exploiting the vulnerability could provide specially crafted pointers that could lead to arbitrary code execution...

AMD Management Plugin 安全漏洞

AMD Management Plugin is a plugin for IT administrators using Microsoft System Center Configuration Manager SCCM from UltraMicroelectronics AMD. A security vulnerability exists in AMD Management Plugin that stems from incorrect default permissions. An attacker could exploit the vulnerability to...

From Offices to Hotels: Backdoor in Contactless Key Cards Enables Mass Cloning

Millions of office and hotel contactless access cards using Fudan Microelectronics chips are vulnerable to a hardware backdoor…...

Russian National Jailed for Smuggling US Military Tech to Russia

Russian businessman sentenced to 3 years for smuggling military-grade microelectronics to Russia via Hong Kong. Maxim Marchenko used…...