EUVD-2026-33977

Dell ThinOS 10, versions prior to ThinOS10 260210.0765, contain an Improper Access control vulnerability. An unauthenticated attacker with physical access could potentially exploit this vulnerability, leading to Information exposure...

CVE-2025-36579

Dell Client Platform BIOS contains a Weak Password Recovery Mechanism vulnerability. An unauthenticated attacker with physical access to the system could potentially exploit this vulnerability, leading to unauthorized access...

CVE-2026-20104

A vulnerability in the bootloader of Cisco IOS XE Software for Cisco Catalyst 9200 Series Switches, Cisco Catalyst ESS9300 Embedded Series Switches, Cisco Catalyst IE9310 and IE9320 Rugged Series Switches, and Cisco IE3500 and IE3505 Rugged Series Switches could allow an authenticated, local...

Dell SupportAssist OS Recovery Multiple Vulnerabilities (DSA-2025-315)

According to its self-reported version number, the version of Dell SupportAssist OS Recovery is affected by Multiple Vulnerabilities. - Dell SupportAssist OS Recovery, versions prior to 5.5.14.0, contain a Creation of Temporary File With Insecure Permissions vulnerability. A local authenticated...

CVE-2023-28064

Dell BIOS contains an Out-of-bounds Write vulnerability. An unauthenticated physical attacker may potentially exploit this vulnerability, leading to denial of service...

CVE-2023-28064

Dell BIOS contains an Out-of-bounds Write vulnerability. An unauthenticated physical attacker may potentially exploit this vulnerability, leading to denial of service...

CVE-2022-39043 Juiker app - Information Leakage

Juiker app stores debug logs which contains sensitive information to mobile external storage. An unauthenticated physical attacker can access these files to acquire partial user information such as personal contacts...

Realtek RTL8111EP-CG and RTL8168FP-CG Trust Management Issue Vulnerability

The Realtek RTL8111EP-CG and Realtek RTL8168FP-CG are both Ethernet controllers. A trust management issue vulnerability exists in Realtek RTL8111EP-CG, RTL8111FP-CG Firmware versions prior to 3.0.0.2019090, which stems from the Dash feature having a hard-coded password that can be exploited by an...

CVE-2022-32967

Realtek RTL8111EP-CG/RTL8111FP-CG DASH function contains a hard-coded password. An unauthenticated physical attacker can exploit this during a reboot triggered by another user to access partial system information (e.g., serial number, server information). Affected firmware versions are prior to 3...

CVE-2022-35222 HiCOS Citizen verification component - Stack Buffer Overflow

HiCOS Citizen verification component has a stack-based buffer overflow vulnerability due to insufficient parameter length validation. An unauthenticated physical attacker can exploit this vulnerability to execute arbitrary code, manipulate system command or disrupt service...

Stack overflow

HiCOS’ client-side citizen digital certificate component has a stack-based buffer overflow vulnerability when reading IC card due to insufficient parameter length validation for OS information. An unauthenticated physical attacker can exploit this vulnerability to execute arbitrary code, manipula...

CVE-2022-26865

Dell Support Assist OS Recovery versions before 5.5.2 contain an Authentication Bypass vulnerability. An unauthenticated attacker with physical access to the system may exploit this vulnerability by bypassing OS Recovery authentication in order to run arbitrary code on the system as Administrator...