41 matches found
K000160902: Intel UEFI vulnerability CVE-2025-20027
Security Advisory Description Improper input validation in the UEFI WheaERST module for some IntelR reference platforms may allow an escalation of privilege. System software adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may...
K000160295: Intel CPU vulnerability CVE-2025-20109
Security Advisory Description Improper Isolation or Compartmentalization in the stream cache mechanism for some IntelR Processors may allow an authenticated user to potentially enable escalation of privilege via local access. CVE-2025-20109 Impact This vulnerability may allow an authenticated use...
F5 Networks F5OS-A FIPS HSM Information Disclosure (K000148625)
The version of F5 Networks F5OS-A installed on the remote host is affected by a vulnerability as referenced in the K000148625 advisory. - A vulnerability exists in F5OS-A software that allows a highly privileged authenticated attacker to access sensitive FIPS hardware security module HSM...
CVE-2025-53860
A vulnerability exists in F5OS-A software that allows a highly privileged authenticated attacker to access sensitive FIPS hardware security module HSM information on F5 rSeries systems. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...
CVE-2025-60013
When a user attempts to initialize the rSeries FIPS module using a password with special shell metacharacters, the FIPS hardware security module HSM may fail to initialize. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...
EUVD-2025-34675
A vulnerability exists in F5OS-A software that allows a highly privileged authenticated attacker to access sensitive FIPS hardware security module HSM information on F5 rSeries systems. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...
CVE-2025-53860
A vulnerability exists in F5OS-A software that allows a highly privileged authenticated attacker to access sensitive FIPS hardware security module HSM information on F5 rSeries systems. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...
CVE-2025-53860
A vulnerability exists in F5OS-A software that allows a highly privileged authenticated attacker to access sensitive FIPS hardware security module HSM information on F5 rSeries systems. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...
EUVD-2025-34635
When a user attempts to initialize the rSeries FIPS module using a password with special shell metacharacters, the FIPS hardware security module HSM may fail to initialize. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...
CVE-2025-53860 F5OS-A FIPS HSM vulnerability
A vulnerability exists in F5OS-A software that allows a highly privileged authenticated attacker to access sensitive FIPS hardware security module HSM information on F5 rSeries systems. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...
CVE-2025-53860 F5OS-A FIPS HSM vulnerability
A vulnerability exists in F5OS-A software that allows a highly privileged authenticated attacker to access sensitive FIPS hardware security module HSM information on F5 rSeries systems. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...
CVE-2025-60013
When a highly-privileged, authenticated attacker attempts to initialize the rSeries FIPS module using a password with special shell metacharacters, arbitrary system commands may be executed, and the FIPS hardware security module HSM may fail to initialize. A successful exploit can allow the...
CVE-2025-60013
When a highly-privileged, authenticated attacker attempts to initialize the rSeries FIPS module using a password with special shell metacharacters, arbitrary system commands may be executed, and the FIPS hardware security module HSM may fail to initialize. A successful exploit can allow the...
CVE-2025-60013 F5OS-A FIPS HSM password vulnerability
When a highly-privileged, authenticated attacker attempts to initialize the rSeries FIPS module using a password with special shell metacharacters, arbitrary system commands may be executed, and the FIPS hardware security module HSM may fail to initialize. A successful exploit can allow the...
PT-2025-42349
Name of the Vulnerable Software and Affected Versions rSeries FIPS module affected versions not specified Description The rSeries FIPS module may fail to initialize when a user attempts initialization with a password containing special shell metacharacters. This issue affects the FIPS hardware...
PT-2025-42367
Name of the Vulnerable Software and Affected Versions F5OS-A affected versions not specified Description A vulnerability allows a highly privileged, authenticated attacker to access sensitive FIPS hardware security module HSM information on F5 rSeries systems. Recommendations At the moment, there...
EUVD-2024-30547
Malicious code in bioql PyPI...
K000152189: Intel BIOS vulnerability CVE-2022-21233
Security Advisory Description Improper isolation of shared resources in some IntelR Processors may allow a privileged user to potentially enable information disclosure via local access. CVE-2022-21233 Impact This vulnerability may allow a privileged user to potentially enable information disclosu...
K000150432: Intel UEFI vulnerabilities CVE-2024-39279 and CVE-2024-28047
Security Advisory Description CVE-2024-39279 Insufficient granularity of access control in UEFI firmware in some IntelR processors may allow a authenticated user to potentially enable denial of service via local access. CVE-2024-28047 Improper input validation in UEFI firmware for some IntelR...
K000148896: Intel SGX vulnerability CVE-2023-43753
Security Advisory Description Improper conditions check in some IntelR Processors with IntelR SGX may allow a privileged user to potentially enable information disclosure via local access. CVE-2023-43753 Impact A local authenticated attacker can exploit the vulnerability to enable information...