8 matches found
EUVD-2024-39315
Malicious code in bioql PyPI...
EUVD-2022-46553
Malicious code in bioql PyPI...
CVE-2020-11683
A timing side channel was discovered in AT91bootstrap before 3.9.2. It can be exploited by attackers with physical access to forge CMAC values and subsequently boot arbitrary code on an affected system...
CVE-2025-2189
This vulnerability exists in the Tinxy smart devices due to storage of credentials in plaintext within the device firmware. An attacker with physical access could exploit this by extracting the firmware and analyzing the binary data to obtain the plaintext credentials stored on the vulnerable...
CVE-2025-26408
CVE-2025-26408 affects Wattsense Bridge devices where the JTAG interface is unprotected and accessible via physical access to the PCB, granting full device access (extract/modify firmware) across all known versions. Root cause per SEC Consult/PacketStorm analysis is an unprotected JTAG interface ...
PT-2022-21416 · Typec · Typec
Name of the Vulnerable Software and Affected Versions: typec affected versions not specified Description: The issue is related to an incorrect calculation of buffer size in typec, which could lead to a possible out of bounds write. This might result in local escalation of privilege for an attacke...
PT-2021-22110 · Boston Scientific · Zoom Latitude +2
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: The issue concerns the presence of unpatched vulnerabilities in off-the-shelf software components used by the affected device. A malicious attacker with physical access to the devic...
CVE-2003-0518
The screen saver in MacOS X allows users with physical access to cause the screen saver to crash and gain access to the underlying session via a large number of characters in the password field, possibly triggering a buffer overflow...