25 matches found
EUVD-2022-25898
Malicious code in bioql PyPI...
EUVD-2022-25899
Malicious code in bioql PyPI...
CVE-2024-0148
CVE-2024-0148 affects NVIDIA Jetson Linux and IGX OS image due to a vulnerability in the UEFI firmware RCM boot mode. An unprivileged attacker with physical access could load untrusted code, potentially causing code execution, privilege escalation, data tampering, denial of service, and informati...
PT-2025-7914 · Nvidia +1 · Nvidia Jetson Linux +2
Name of the Vulnerable Software and Affected Versions: NVIDIA Jetson Linux and IGX OS image affected versions not specified Description: The issue is related to a vulnerability in the UEFI firmware RCM boot mode, where an unprivileged attacker with physical access to the device could load untrust...
CVE-2022-20649
A vulnerability in Cisco RCM for Cisco StarOS Software could allow an unauthenticated, remote attacker to perform remote code execution on the application with root-level privileges in the context of the configured container. This vulnerability exists because the debug mode is incorrectly enabled...
CVE-2022-20649
A vulnerability in Cisco RCM for Cisco StarOS Software could allow an unauthenticated, remote attacker to perform remote code execution on the application with root-level privileges in the context of the configured container. This vulnerability exists because the debug mode is incorrectly enabled...
CVE-2022-20648
A vulnerability in a debug function for Cisco RCM for Cisco StarOS Software could allow an unauthenticated, remote attacker to perform debug actions that could result in the disclosure of confidential information that should be restricted. This vulnerability exists because of a debug service that...
CVE-2022-20648 Cisco Redundancy Configuration Manager Debug Information Disclosure Vulnerability
A vulnerability in a debug function for Cisco RCM for Cisco StarOS Software could allow an unauthenticated, remote attacker to perform debug actions that could result in the disclosure of confidential information that should be restricted. This vulnerability exists because of a debug service that...
CVE-2022-20649 Cisco Redundancy Configuration Manager Debug Remote Code Execution Vulnerability
A vulnerability in Cisco RCM for Cisco StarOS Software could allow an unauthenticated, remote attacker to perform remote code execution on the application with root-level privileges in the context of the configured container. This vulnerability exists because the debug mode is incorrectly enabled...
CVE-2022-20649 Cisco Redundancy Configuration Manager Debug Remote Code Execution Vulnerability
A vulnerability in Cisco RCM for Cisco StarOS Software could allow an unauthenticated, remote attacker to perform remote code execution on the application with root-level privileges in the context of the configured container. This vulnerability exists because the debug mode is incorrectly enabled...
rcm-saga.be Cross Site Scripting vulnerability OBB-3405112
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
CLSA-2022-1646935759 Update of ca-certificates
remove old certificate - Removing: - Certificate "DST Root CA X3" - Update to CKBI 2.50 from NSS 3.67 - Update to CKBI 2.48 from NSS 3.66 - Removing: - Certificate "Verisign Class 3 Public Primary Certification Authority - G3" - Certificate "GeoTrust Global CA" - Certificate "GeoTrust Universal...
Cisco RCM for Cisco StarOS Software拒绝服务漏洞
Cisco RCM for Cisco StarOS Software is a denial-of-service vulnerability that could be exploited to cause the checkpoint manager process to restart upon receipt of malformed TCP data...
CVE-2022-20750
A vulnerability in the checkpoint manager implementation of Cisco Redundancy Configuration Manager RCM for Cisco StarOS Software could allow an unauthenticated, remote attacker to cause the checkpoint manager process to restart upon receipt of malformed TCP data. This vulnerability is due to...
CVE-2022-20750
CVE-2022-20750 describes a DoS vulnerability in the Cisco StarOS RCM checkpoint manager, triggered by malformed TCP data. The issue stems from improper input validation of ingress TCP packets, allowing an unauthenticated, remote attacker to cause the checkpoint manager process to restart and rend...
Cisco Redundancy Configuration Manager for Cisco StarOS Software TCP Denial of Service Vulnerability
A vulnerability in the checkpoint manager implementation of Cisco Redundancy Configuration Manager RCM for Cisco StarOS Software could allow an unauthenticated, remote attacker to cause the checkpoint manager process to restart upon receipt of malformed TCP data. This vulnerability is due to...
Ransomware Hits Leading US Medical Debt Collector R1 RCM Inc.
By Waqas Previously, R1 RCM Inc., under different name had several incidents involving thefts of laptops containing unencrypted patient data. This is a post from HackRead.com Read the original post: Ransomware Hits Leading US Medical Debt Collector R1 RCM Inc...
Medical Debt Collection Firm R1 RCM Hit in Ransomware Attack
R1 RCM Inc. NASDAQ:RCM, one of the nations largest medical debt collection companies, has been hit in a ransomware attack. Formerly known as Accretive Health Inc., Chicago-based R1 RCM brought in revenues of $1.18 billion in 2019. The company has more than 19,000 employees and contracts with at...
Buffer overflow
Some NVIDIA Tegra mobile processors released prior to 2016 contain a buffer overflow vulnerability in BootROM Recovery Mode RCM. An attacker with physical access to the device's USB and the ability to force the device to reboot into RCM could exploit the vulnerability to execute unverified code...
CVE-2018-6242
Some NVIDIA Tegra mobile processors released prior to 2016 contain a buffer overflow vulnerability in BootROM Recovery Mode RCM. An attacker with physical access to the device's USB and the ability to force the device to reboot into RCM could exploit the vulnerability to execute unverified code...