168 matches found
JLSEC-2026-214 Normally in OpenSSL EC groups always have a co-factor present and this is used in side channel...
Normally in OpenSSL EC groups always have a co-factor present and this is used in side channel resistant code paths. However, in some cases, it is possible to construct a group using explicit parameters instead of using a named curve. In those cases it is possible that such a group does not have...
EUVD-2025-209448
A side-channel vulnerability exists in the implementation of BIP-39 mnemonic processing, as observed in Trezor One v1.13.0 to v1.14.0, Trezor T v1.13.0 to v1.14.0, and Trezor Safe v1.13.0 to v1.14.0 hardware wallets. This originates from the BIP-39 standard guidelines, which induce non-constant...
MiracleLinux 8 : openssl-1.1.1c-15.el8 (AXSA:2020-289:02)
The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-289:02 advisory. openssl: side-channel weak encryption vulnerability CVE-2019-1547 openssl: information disclosure in fork CVE-2019-1549 openssl: information disclosu...
MiracleLinux 7 : java-1.8.0-openjdk-1.8.0.282.b08-1.el7 (AXSA:2021-1294:02)
The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1294:02 advisory. - Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are...
CVE-2019-18673
On SHIFT BitBox02 devices, a side channel for the row-based OLED display was found. The power consumption of each row-based display cycle depends on the number of illuminated pixels, allowing a partial recovery of display contents. For example, a hardware implant in the USB cable might be able to...
EUVD-2018-8660
Malware in sbrugna...
EUVD-2021-11032
Malware in sbrugna...
EUVD-2021-11034
Malware in sbrugna...
EUVD-2018-15470
Malware in sbrugna...
EUVD-2024-16696
Malicious code in bioql PyPI...
EUVD-2023-25522
Malicious code in bioql PyPI...
EUVD-2022-25524
Malicious code in bioql PyPI...
EUVD-2025-21816
Malicious code in bioql PyPI...
EUVD-2023-25505
Malicious code in bioql PyPI...
EUVD-2023-25506
Malicious code in bioql PyPI...
EulerOS 2.0 SP12 : grub2 (EulerOS-SA-2025-2009)
According to the versions of the grub2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : GNU GRUB aka GRUB2 through 2.12 does not use a constant-time algorithm for grubcryptomemcmp and thus allows side-channel attacks.CVE-2024-56738...
Recommended update for grub2
This update for grub2 fixes the following issues: CVE-2024-56738: Fixed side-channel attack due to not constant-time algorithm in grubcryptomemcmp bsc1234959 Other fixes: - Fix test -f and -s do not work properly over the network files served via tftp and http bsc1246157, bsc1246237 - Skip mount...
Security update for grub2
This update for grub2 fixes the following issues: CVE-2024-56738: Fixed side-channel attack due to not constant-time algorithm in grubcryptomemcmp bsc1234959 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...
CVE-2025-23270
NVIDIA Jetson Linux contains a vulnerability in UEFI Management mode, where an unprivileged local attacker may cause exposure of sensitive information via a side channel vulnerability. A successful exploit of this vulnerability might lead to code execution, data tampering, denial of service, and...
CVE-2025-46570
The CVE-2025-46570 entry concerns vLLM (inference/serving engine). The concrete detail across connected records shows a vulnerability in the PageAttention-based prefill path: when a new prompt is processed, a matching prefix chunk can accelerate prefill, creating timing differences (TTFT) that co...