Lucene search
K

60 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 5:1 p.m.7 views

CVE-2020-28341

An issue was discovered on Samsung mobile devices with Q10.0 Exynos990 chipsets software. The S3K250AF Secure Element CC EAL 5+ chip allows attackers to execute arbitrary code and obtain sensitive information via a buffer overflow. The Samsung ID is SVE-2020-18632 November 2020...

7.8CVSS7.8AI score0.00185EPSS
Exploits0
Packet Storm
Packet Storm
added 2025/02/27 12:0 a.m.657 views

Siemens A8000 Firmware Insecurities

Siemens A8000 suffers from multiple firmware vulnerabilities. The PLC allows the downgrade to previous firmware versions. Therefore, an attacker is able to downgrade to a firmware version with known vulnerabilities and exploit them on the PLC, which may lead to leaking data or backdoored devices....

7.1CVSS7.4AI score0.47722EPSS
Exploits3
CNVD
CNVD
added 2024/12/11 12:0 a.m.13 views

Siemens SICAM A8000 CP-8031 and CP-8050 Firmware Decryption Vulnerability

The SICAM A8000 RTU Remote Terminal Unit is a modular device for remote control and automation applications in all areas of energy supply. A firmware decryption vulnerability exists in the Siemens SICAM A8000 CP-8031 and CP-8050 due to the fact that the affected devices contain a secure element...

5.1CVSS7.4AI score0.00292EPSS
Exploits1References1
NVD
NVD
added 2024/12/10 2:30 p.m.17 views

CVE-2024-53832

A vulnerability has been identified in CPCI85 Central Processing/Communication All versions V05.30. The affected devices contain a secure element which is connected via an unencrypted SPI bus. This could allow an attacker with physical access to the SPI bus to observe the password used for the...

5.1CVSS0.00292EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/12/10 1:54 p.m.6 views

CVE-2024-53832

A vulnerability has been identified in CPCI85 Central Processing/Communication All versions V05.30. The affected devices contain a secure element which is connected via an unencrypted SPI bus. This could allow an attacker with physical access to the SPI bus to observe the password used for the...

5.1CVSS6.8AI score0.00292EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/12/10 1:54 p.m.16 views

CVE-2024-53832

A vulnerability has been identified in CPCI85 Central Processing/Communication All versions V05.30. The affected devices contain a secure element which is connected via an unencrypted SPI bus. This could allow an attacker with physical access to the SPI bus to observe the password used for the...

5.1CVSS0.00292EPSS
Exploits1References1
CVE
CVE
added 2024/12/10 1:54 p.m.55 views

CVE-2024-53832

CVE-2024-53832 affects Siemens SICAM A8000 devices (CP-8031/CP-8050) with CPCI85 Central Processing/Communication, all versions before V05.30. A secure element is connected via an unencrypted SPI bus, enabling a physically proximate attacker to observe the authentication password and use the secu...

5.1CVSS6.8AI score0.00292EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/12/10 12:0 a.m.6 views

PT-2024-35944 · Unknown · Cpci85 Central Processing/Communication

Name of the Vulnerable Software and Affected Versions: CPCI85 Central Processing/Communication versions prior to V05.30 Description: A vulnerability has been identified in the CPCI85 Central Processing/Communication devices. The affected devices contain a secure element connected via an unencrypt...

5.1CVSS6.7AI score0.00292EPSS
Exploits1References5
CNNVD
CNNVD
added 2024/12/10 12:0 a.m.8 views

Siemens CPCI85 Central Processing 安全漏洞

The SICAM A8000 RTU Remote Terminal Unit is a modular device for remote control and automation applications in all areas of energy supply. A firmware decryption vulnerability exists in the Siemens SICAM A8000 CP-8031 and CP-8050 due to the fact that the affected devices contain a secure element...

5.1CVSS7.2AI score0.00292EPSS
Exploits1References1
CNVD
CNVD
added 2023/11/01 12:0 a.m.11 views

Google Android elevation of privilege vulnerability (CNVD-2023-96688)

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability, which stems from an integer overflow in Secure Element, and can be exploited by an attacker to cause an elevation of privilege...

6.7CVSS7AI score0.00092EPSS
Exploits0References1
NVD
NVD
added 2023/10/30 5:15 p.m.20 views

CVE-2023-21371

In Secure Element, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...

6.7CVSS6.8AI score0.00092EPSS
Exploits0References1
OSV
OSV
added 2023/10/30 5:15 p.m.0 views

CVE-2023-21371

In Secure Element, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...

6.7CVSS6AI score
Exploits0References1
Prion
Prion
added 2023/10/30 5:15 p.m.17 views

Integer overflow

In Secure Element, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...

4CVSS7.2AI score0.00092EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/10/30 4:59 p.m.16 views

CVE-2023-21371

In Secure Element, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...

7.1AI score0.00092EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/10/30 4:59 p.m.19 views

CVE-2023-21371

In Secure Element, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...

7.5AI score0.00092EPSS
Exploits0References1
CVE
CVE
added 2023/10/30 4:59 p.m.45 views

CVE-2023-21371

CVE-2023-21371 affects Android’s Secure Element. The issue is an out-of-bounds write caused by an integer overflow in Secure Element code, enabling local escalation of privilege to System execution privileges without user interaction. Exploitation details are not provided in the connected documen...

6.7CVSS6.8AI score0.00092EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2023/10/30 12:0 a.m.7 views

Google Android 输入验证错误漏洞

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability, which stems from an integer overflow in Secure Element, and can be exploited by an attacker to cause an elevation of privilege...

6.7CVSS7.3AI score0.00092EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/10/30 12:0 a.m.6 views

PT-2023-18146 · Unknown · Secure Element

Name of the Vulnerable Software and Affected Versions: Secure Element affected versions not specified Description: In Secure Element, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User...

6.7CVSS6.5AI score0.00092EPSS
Exploits0References5
OSV
OSV
added 2023/06/15 8:15 p.m.4 views

CVE-2023-2747

The initialization vector IV used by the secure engine SE for encrypting data stored in the SE flash memory is uninitialized...

5.5CVSS5.8AI score0.00164EPSS
Exploits0References2
OSV
OSV
added 2023/06/15 11:15 a.m.6 views

CVE-2023-32229

Due to an error in the software interface to the secure element chip on Bosch IP cameras of family CPP13 and CPP14, the chip can be permanently damaged when enabling the Stream security option signing of the video stream with option MD5, SHA-1 or SHA-256...

6.5CVSS5.8AI score
Exploits0References1
Rows per page
Query Builder