643 matches found
EUVD-2022-41265
Malicious code in bioql PyPI...
EUVD-2021-6919
Malicious code in bioql PyPI...
EUVD-2022-29337
Malicious code in bioql PyPI...
EUVD-2023-24700
Malicious code in bioql PyPI...
EUVD-2022-32830
Malicious code in bioql PyPI...
EUVD-2025-21739
Malicious code in bioql PyPI...
EUVD-2022-41261
Malicious code in bioql PyPI...
EUVD-2022-26114
Malicious code in bioql PyPI...
EUVD-2023-39813
Malicious code in bioql PyPI...
CVE-2024-36326
CVE-2024-36326 describes a missing authorization check in AMD RomArmor that could let an attacker bypass ROMArmor protections when resuming from standby, potentially impacting confidentiality and integrity. Affected: AMD Client Processor platforms with RomArmor protection. Root cause: incomplete ...
CVE-2022-38695
In BootRom, there's a possible unchecked command index. This could lead to local escalation of privilege with no additional execution privileges needed...
CVE-2022-38692
In BootROM, there is a missing size check for RSA keys in Certificate Type 0 validation. This could lead to memory buffer overflow without requiring additional execution privileges...
HPESBHF04926 rev.1 - Certain HPE StoreEasy Servers Using Certain Intel Processors, INTEL-SA-01313, 2025.3 IPU, Intel Xeon Processor Firmware Advisory, Multiple Vulnerabilities
Potential Security Impact: Local: Denial of Service DoS, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE StoreEasy 1470 Performance - Prior to 2.6008-07-2025 U63 ROM Family HPE StoreEasy 1470 Storage - Prior to 2.6008-07-2025 U63 ROM Family HPE StoreEas...
HPESBHF04928 rev.1 - Certain HPE StoreEasy Servers Using Certain Intel Processors, INTEL-SA-01280, 2025.3 IPU, Intel Chipset Firmware Advisory, Multiple Vulnerabilities
Potential Security Impact: Local: Disclosure of Information, Escalation of Privilege; Remote: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE StoreEasy 1470 Performance - Prior to 2.6008-07-2025 U63 ROM Family HPE StoreEasy 1470 Storage - Prior to...
CVE-2025-54071
CVE-2025-54071 describes an authenticated arbitrary file write vulnerability in RomM (ROM Manager) version 4.0.0-beta.3 and earlier, exploitable via the /api/saves endpoint. An attacker who has a viewer role or Scope.ASSETS_WRITE permission (or higher) can bypass auth checks and write arbitrary f...
CVE-2025-53908 RomM vulnerable to Authenticated Path Traversal
RomM is a self-hosted rom manager and player. Versions prior to 3.10.3 and 4.0.0-beta.3 have an authenticated path traversal vulnerability in the /api/raw endpoint. Anyone running the latest version of RomM and has multiple users, even unprivileged users, such as the kiosk user in the official...
CVE-2024-36347
Improper signature verification in AMD CPU ROM microcode patch loader may allow an attacker with local administrator privilege to load malicious microcode, potentially resulting in loss of integrity of x86 instruction execution, loss of confidentiality and integrity of data in x86 CPU privileged...
UBUNTU-CVE-2024-36347
Improper signature verification in AMD CPU ROM microcode patch loader may allow an attacker with local administrator privilege to load malicious microcode, potentially resulting in loss of integrity of x86 instruction execution, loss of confidentiality and integrity of data in x86 CPU privileged...
ALSA-2025:9420 Moderate: libarchive security update
The libarchive programming library can create and read several different streaming archive formats, including GNU tar, cpio, and ISO 9660 CD-ROM images. Libarchive is used notably in the bsdtar utility, scripting language bindings such as python-libarchive, and several popular desktop file...
USN-7513-5 linux-oracle-6.8 vulnerabilities
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - RISC-V architecture; - x86 architecture; - Block layer subsystem; - Compute Acceleration Framework; - ACPI drivers;...