79 matches found
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: pinctrl: nuvoton: npcm8xx: Added a NULL check in npcm8xxgpiofw. Calls to devmkasprintf may return null pointers in case of failure. However, the return values were not checked in npcm8xxgpiofw. Add a NULL check in npcm8xxgpiofw t...
Astra Linux - уязвимость в linux-6.1
In the Linux kernel, the following vulnerability has been resolved: pinctrl: nuvoton: wpcm450: fix an out-of-bounds write issue. The write operation to ‘pctrl-gpiobank’ occurs before the check for the validity of the GPIO index; therefore, an out-of-bounds write may occur. This issue was identifi...
Nuvoton ECHD Key Security Update
Nuvoton has informed HP of a potential security vulnerability identified in Nuvoton TPM NPCT7xx models used in certain HP PC products, which might allow information disclosure. Nuvoton has released firmware mitigation for the potential vulnerability. HP has identified affected platforms and...
CVE-2026-6923 Nuvoton - CWE-1300: Improper Protection of Physical Side Channels
A side-channel attack, which requires a physical presence to the TPM, can lead to extraction of an Elliptic Curve Diffie-Hellman ECDH key...
CVE-2026-6923 Nuvoton - CWE-1300: Improper Protection of Physical Side Channels
A side-channel attack, which requires a physical presence to the TPM, can lead to extraction of an Elliptic Curve Diffie-Hellman ECDH key...
CVE-2026-6923
CVE-2026-6923 describes a side-channel vulnerability affecting TPMs where physical access is required to extract an Elliptic Curve Diffie-Hellman (ECDH) key. The vulnerability stems from a physical side channel to the TPM that can lead to key leakage. Documented impact is confidentiality loss (ex...
Nuvoton NPCT7xx 安全漏洞
Nuvoton NPCT7xx is a series of TPM security controllers developed by Nuvoton Corporation in Taiwan, China, aimed at trusted computing and platform security management. Nuvoton NPCT7xx has security vulnerabilities, which stem from side-channel attacks and may lead to the extraction of elliptic cur...
EUVD-2020-17774
Malware in sbrugna...
EUVD-2021-18882
Malware in sbrugna...
EUVD-2019-5763
Malware in sbrugna...
EUVD-2024-37325
Malicious code in bioql PyPI...
EUVD-2024-54017
Malicious code in bioql PyPI...
Malicious code in nuvoton (npm)
The package nuvoton was found to contain malicious code...
MAL-2025-27931 Malicious code in nuvoton (npm)
The package nuvoton was found to contain malicious code...
Linux Distros Unpatched Vulnerability : CVE-2023-52512
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: pinctrl: nuvoton: wpcm450: fix out of bounds write Write into 'pctrl-gpiobank' happens befor...
Linux Distros Unpatched Vulnerability : CVE-2025-21982
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: pinctrl: nuvoton: npcm8xx: Add NULL check in npcm8xxgpiofw devmkasprintf calls can return nu...
CVE-2021-32015
In Nuvoton NPCT75x TPM 1.2 firmware 7.4.0.0, a local authenticated malicious user with high privileges could potentially gain unauthorized access to TPM non-volatile memory. NOTE: Upgrading to firmware version 7.4.0.1 will mitigate against the vulnerability, but version 7.4.0.1 is not TCG or Comm...
CVE-2020-25082
An attacker with physical access to Nuvoton Trusted Platform Module NPCT75x 7.2.x before 7.2.2.0 could extract an Elliptic Curve Cryptography ECC private key via a side-channel attack against ECDSA, because of an Observable Timing Discrepancy...
CVE-2019-14602
Improper permissions in the installer for the Nuvoton CIR Driver versions 1.02.1002 and before may allow an authenticated user to potentially enable escalation of privilege via local access...
SUSE CVE-2025-21982
In the Linux kernel, the following vulnerability has been resolved: pinctrl: nuvoton: npcm8xx: Add NULL check in npcm8xxgpiofw devmkasprintf calls can return null pointers on failure. But the return values were not checked in npcm8xxgpiofw. Add NULL check in npcm8xxgpiofw, to handle kernel NULL...