3 matches found
CVE-2026-0714
A physical attack vulnerability exists in certain Moxa industrial computers using TPM-backed LUKS full-disk encryption on Moxa Industrial Linux 3, where the discrete TPM is connected to the CPU via an SPI bus. Exploitation requires invasive physical access, including opening the device and...
CVE-2021-27208
When booting a Zync-7000 SOC device from nand flash memory, the nand driver in the ROM does not validate the inputs when reading in any parameters in the nand’s parameter page. IF a field read in from the parameter page is too large, this causes a buffer overflow that could lead to arbitrary code...
CVE-2019-8900
CVE-2019-8900 concerns a SecureROM vulnerability in some Apple devices that allows an unauthenticated local attacker to execute arbitrary code on boot. Exploitation requires physical access: device must be connected to a computer and booted in DFU mode; the change is not persistent across reboots...