45 matches found
UBUNTU-CVE-2016-6731
An elevation of privilege vulnerability in the NVIDIA GPU driver in Android before 2016-11-05 could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which...
CVE-2016-6732
An elevation of privilege vulnerability in the NVIDIA GPU driver in Android before 2016-11-05 could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which...
Zyxel MAX3XX Series Wimax CPEs Hardcoded Root Password
Vulnerability Title: Hardcoded root password in Zyxel MAX3XX series Wimax CPEs Date: 23/03/2016 Product: Zyxel MAX3XX series CPEs Vendor: www.zyxel.com Affected Firmware: Latest version at the time of disclosure v 2.00 and below tested Patch: Unpatched Vendor contact date: 12/12/2015 Authored by:...
BIOS implementations fail to properly set UEFI write protections after waking from sleep mode
Overview Multiple BIOS implementations fail to properly set write protections after waking from sleep, leading to the possibility of an arbitrary BIOS image reflash. Description According to Cornwell, Butterworth, Kovah, and Kallenberg, who reported the issue affecting certain Dell client systems...
DHS Warns of UEFI Hardware Vulnerabilities
The CERT/CC at Carnegie Mellon University today released three advisories warning of vulnerabilities that affect some unified extensible firmware interface UEFI systems and the BIOS of some Intel chipsets. Hardware and firmware vulnerabilities, such as these reported by Corey Kallenberg of MITRE...