Lucene search
+L

643 matches found

CVE
CVE
added 2026/03/28 11:58 a.m.8 views

CVE-2016-20040

CVE-2016-20040 affects TiEmu 3.03-nogdb+dfsg-3. A local overflow exists in the ROM parameter handling that allows a local attacker to crash the application or execute arbitrary code by supplying an oversized ROM parameter to the tiemu CLI, overflowing a stack buffer and overwriting the instructio...

8.6CVSS6.3AI score0.00163EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/03/28 11:58 a.m.2 views

CVE-2016-20040

TiEmu 3.03-nogdb+dfsg-3 contains a buffer overflow vulnerability in the ROM parameter handling that allows local attackers to crash the application or execute arbitrary code. Attackers can supply an oversized ROM parameter to the tiemu command-line interface to overflow the stack buffer and...

8.6CVSS6.3AI score0.00163EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/03/28 11:58 a.m.33 views

CVE-2016-20040 TiEmu 3.03-nogdb+dfsg-3 Buffer Overflow via ROM Parameter

TiEmu 3.03-nogdb+dfsg-3 contains a buffer overflow vulnerability in the ROM parameter handling that allows local attackers to crash the application or execute arbitrary code. Attackers can supply an oversized ROM parameter to the tiemu command-line interface to overflow the stack buffer and...

8.6CVSS0.00163EPSS
Exploits0References3
Schneier on Security
Schneier on Security
added 2026/03/23 11:1 a.m.9 views

Microsoft Xbox One Hacked

It's an impressive feat, over a decade after the box was released: Since reset glitching wasn't possible, Gaasedelen thought some voltage glitching could do the trick. So, instead of tinkering with the system rest pins the hacker targeted the momentary collapse of the CPU voltage rail. This was...

5.9AI score
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2026/02/11 12:0 a.m.4 views

HPESBHF05016 rev.2 - Certain HPE StoreEasy Servers Using Certain Intel Processors, INTEL-SA-01396, 2026.1 IPU, Intel Processor Firmware Advisory, Local Escalation of Privilege Vulnerability

Potential Security Impact: Local: Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE StoreEasy 1470 Performance - Prior to v2.8001-29-2026 U63 ROM Family HPE StoreEasy 1470 Storage - Prior to v2.8001-29-2026 U63 ROM Family HPE StoreEasy 1570 Performance -...

3.9CVSS6.1AI score0.00133EPSS
Exploits0
NVD
NVD
added 2026/02/10 8:16 p.m.10 views

CVE-2025-48515

Insufficient parameter sanitization in AMD Secure Processor ASP Boot Loader could allow an attacker with access to SPIROM upgrade to overwrite the memory, potentially resulting in arbitrary code execution...

5.4CVSS0.00126EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/10 12:0 a.m.11 views

PT-2026-7464

Name of the Vulnerable Software and Affected Versions AMD Secure Processor ASP Boot Loader affected versions not specified Description A flaw exists in the AMD Secure Processor ASP Boot Loader where insufficient parameter sanitization could allow an attacker with access to SPIROM upgrade to...

5.4CVSS5.8AI score0.00126EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/01/09 12:21 p.m.6 views

CVE-2018-14066

The content://wappush content provider in com.android.provider.telephony, as found in some custom ROMs for Android phones, allows SQL injection. One consequence is that an application without the READSMS permission can read SMS messages. This affects Infinix X571 phones, as well as various Lenovo...

9.8CVSS7.9AI score0.00435EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:24 a.m.9 views

CVE-2021-31532

NXP LPC55S6x microcontrollers 0A and 1B, i.MX RT500 silicon rev B1 and B2, i.MX RT600 silicon rev A0, B0, LPC55S6x, LPC55S2x, LPC552x silicon rev 0A, 1B, LPC55S1x, LPC551x silicon rev 0A and LPC55S0x, LPC550x silicon rev 0A include an undocumented ROM patch peripheral that allows unsigned,...

6.8CVSS7AI score0.00452EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:19 a.m.8 views

CVE-2021-22045

VMware ESXi 7.0, 6.7 before ESXi670-202111101-SG and 6.5 before ESXi650-202110101-SG, VMware Workstation 16.2.0 and VMware Fusion 12.2.0 contains a heap-overflow vulnerability in CD-ROM device emulation. A malicious actor with access to a virtual machine with CD-ROM device emulation may be able t...

7.8CVSS7.2AI score0.04681EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:34 a.m.4 views

CVE-2024-41624

Incorrect access control in Himalaya Xiaoya nano smart speaker romversion 1.6.96 allows a remote attacker to have an unspecified impact...

6.3CVSS6.9AI score0.00288EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/04 8:12 p.m.5 views

CVE-2025-65097

RomM ROM Manager allows users to scan, enrich, browse and play their game collections with a clean and responsive interface. Prior to 4.4.1 and 4.4.1-beta.2, an Authenticated User can delete collections belonging to other users by directly sending a DELETE request to the collection endpoint. No...

7.1CVSS6.7AI score0.00181EPSS
Exploits0References1
NVD
NVD
added 2025/12/03 8:16 p.m.9 views

CVE-2025-65096

RomM ROM Manager allows users to scan, enrich, browse and play their game collections with a clean and responsive interface. Prior to 4.4.1 and 4.4.1-beta.2, users can read private collections / smart collections belonging to other users by directly accessing their IDs via API. No ownership...

5.3CVSS0.00168EPSS
Exploits0References1
CVE
CVE
added 2025/12/03 7:41 p.m.19 views

CVE-2025-65097

RomM (ROM Manager) prior to versions 4.4.1 and 4.4.1-beta.2 is affected by an IDOR-like issue where an authenticated user can delete other users’ collections by sending a DELETE request to the /collections endpoint without ownership verification. Exploitation details or in-the-wild status are not...

7.1CVSS6.3AI score0.00181EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2025/12/03 7:39 p.m.6 views

EUVD-2025-201130

RomM ROM Manager allows users to scan, enrich, browse and play their game collections with a clean and responsive interface. Prior to 4.4.1 and 4.4.1-beta.2, users can read private collections / smart collections belonging to other users by directly accessing their IDs via API. No ownership...

5.3CVSS6.1AI score0.00168EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/11/20 12:0 a.m.7 views

PT-2025-47563

Name of the Vulnerable Software and Affected Versions RomM versions prior to 4.4.1 RomM version 4.4.1-beta.2 Description RomM allows users to scan, enrich, browse, and play their game collections. The software contains multiple unrestricted file upload flaws that permit authenticated users to...

7.6CVSS6.2AI score0.00278EPSS
Exploits2References5
OSV
OSV
added 2025/11/07 12:43 p.m.8 views

USN-7853-3 linux-azure, linux-azure-4.15 vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

7.8CVSS6.6AI score0.01345EPSS
Exploits8References12
Ubuntu
Ubuntu
added 2025/10/30 8:3 p.m.9 views

USN-7853-2: Linux kernel (FIPS) vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

7.8CVSS7.4AI score0.01345EPSS
Exploits8
OSV
OSV
added 2025/10/30 7:48 p.m.10 views

USN-7854-1 linux-kvm vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

7.8CVSS6.8AI score0.01345EPSS
Exploits8References19
OSV
OSV
added 2025/10/14 5:15 p.m.5 views

CVE-2025-55338

Missing Ability to Patch ROM Code in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack...

4.6CVSS5.8AI score0.02957EPSS
Exploits0References1
Rows per page
Query Builder