60 matches found
CVE-2023-32229
Due to an error in the software interface to the secure element chip on Bosch IP cameras of family CPP13 and CPP14, the chip can be permanently damaged when enabling the Stream security option signing of the video stream with option MD5, SHA-1 or SHA-256...
Design/Logic Flaw
Due to an error in the software interface to the secure element chip on Bosch IP cameras of family CPP13 and CPP14, the chip can be permanently damaged when enabling the Stream security option signing of the video stream with option MD5, SHA-1 or SHA-256...
CVE-2023-32229
CVE-2023-32229 affects Bosch IP cameras in the CPP13/CPP14 families. The issue arises from an error in the software interface to the secure element chip, which can permanently damage the chip when enabling the Stream security option (signing the video stream) with MD5, SHA-1 or SHA-256. Public re...
CVE-2023-32229
Due to an error in the software interface to the secure element chip on Bosch IP cameras of family CPP13 and CPP14, the chip can be permanently damaged when enabling the Stream security option signing of the video stream with option MD5, SHA-1 or SHA-256...
CVE-2023-32229
Due to an error in the software interface to the secure element chip on Bosch IP cameras of family CPP13 and CPP14, the chip can be permanently damaged when enabling the Stream security option signing of the video stream with option MD5, SHA-1 or SHA-256...
PT-2023-23672 · Bosch · Bosch Ip Cameras
Name of the Vulnerable Software and Affected Versions: Bosch IP cameras of family CPP13 and CPP14 affected versions not specified Description: The issue arises from an error in the software interface to the secure element chip. This error can cause permanent damage to the chip when the Stream...
CVE-2020-12061
An issue was discovered in Nitrokey FIDO U2F firmware through 1.1. Communication between the microcontroller and the secure element transmits credentials in plain. This allows an adversary to eavesdrop the communication and derive the secrets stored in the microcontroller. As a result, the attack...
CVE-2020-12061
An issue was discovered in Nitrokey FIDO U2F firmware through 1.1. Communication between the microcontroller and the secure element transmits credentials in plain. This allows an adversary to eavesdrop the communication and derive the secrets stored in the microcontroller. As a result, the attack...
Nitrokey FIDO U2F 安全漏洞
Nitrokey FIDO2 is an open source security key that supports FIDO2 and U2F standards for strong two-factor authentication and passwordless login. A security vulnerability exists in Nitrokey FIDO U2F firmware version 1.1 and prior versions, which stems from the fact that communications between the...
PT-2021-9436 · Nitrokey · Nitrokey Fido U2F
Name of the Vulnerable Software and Affected Versions: Nitrokey FIDO U2F firmware versions through 1.1 Description: An issue in the communication between the microcontroller and the secure element allows an adversary to eavesdrop and derive secrets stored in the microcontroller, enabling arbitrar...
CVE-2020-28341
An issue was discovered on Samsung mobile devices with Q10.0 Exynos990 chipsets software. The S3K250AF Secure Element CC EAL 5+ chip allows attackers to execute arbitrary code and obtain sensitive information via a buffer overflow. The Samsung ID is SVE-2020-18632 November 2020...
Buffer overflow
An issue was discovered on Samsung mobile devices with Q10.0 Exynos990 chipsets software. The S3K250AF Secure Element CC EAL 5+ chip allows attackers to execute arbitrary code and obtain sensitive information via a buffer overflow. The Samsung ID is SVE-2020-18632 November 2020...
CVE-2020-28341
An issue was discovered on Samsung mobile devices with Q10.0 Exynos990 chipsets software. The S3K250AF Secure Element CC EAL 5+ chip allows attackers to execute arbitrary code and obtain sensitive information via a buffer overflow. The Samsung ID is SVE-2020-18632 November 2020...
Titan Security Keys – Google launches its own USB-based FIDO U2F Keys
At Google Cloud Next '18 convention in San Francisco, the company has introduced Titan Security Keys—a tiny USB device, similar to Yubico's YubiKey, that offers hardware-based two-factor authentication for your online accounts with the highest level of protection against phishing attacks. These...
The vulnerability of the Android operating system, which allows a hacker to increase their privileges
The vulnerability of the Secure Element Evaluation Kit plugin for the Android operating system is related to deficiencies in access control for certain functions. Exploiting this vulnerability can allow a malicious actor, operating remotely, to enhance their privileges through a specially crafted...
CVE-2015-6606
The Secure Element Evaluation Kit aka SEEK or SmartCard API plugin in Android before 5.1.1 LMY48T allows attackers to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 22301786...
Code injection
The Secure Element Evaluation Kit aka SEEK or SmartCard API plugin in Android before 5.1.1 LMY48T allows attackers to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 22301786...
CVE-2015-6606
The Secure Element Evaluation Kit aka SEEK or SmartCard API plugin in Android before 5.1.1 LMY48T allows attackers to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 22301786...
CVE-2015-6606
The Secure Element Evaluation Kit aka SEEK or SmartCard API plugin in Android before 5.1.1 LMY48T allows attackers to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 22301786...
CVE-2015-6606
CVE-2015-6606 affects the Secure Element Evaluation Kit (SEEK/SmartCard API) plugin in Android up to 5.1.1 LMY48T. The flaw allows a crafted application to gain elevated privileges (Signature or SignatureOrSystem) due to a code-injection flaw in SEEK, enabling privilege escalation. Affected: SEEK...