11 matches found
CVE-2025-48614
In rebootWipeUserData of RecoverySystem.java, there is a possible way to factory reset the device while in DSU mode due to a missing permission check. This could lead to physical denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from rdevaddable in RCU mode that could lead to null pointer dereference...
CVE-2019-8900
CVE-2019-8900 concerns a SecureROM vulnerability in some Apple devices that allows an unauthenticated local attacker to execute arbitrary code on boot. Exploitation requires physical access: device must be connected to a computer and booted in DFU mode; the change is not persistent across reboots...
PT-2025-7272 · Apple · Device
Name of the Vulnerable Software and Affected Versions: Apple devices affected versions not specified Description: A security issue in the SecureROM of certain Apple devices allows an unauthenticated local attacker to execute arbitrary code on the device upon booting. This requires physical access...
SUSE CVE-2022-48904
In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Fix I/O page table memory leak The current logic updates the I/O page table mode for the domain before calling the logic to free memory used for the page table. This results in IOMMU page table memory leak, and can be...
CVE-2017-6466
F-Secure Software Updater 2.20, as distributed in several F-Secure products, downloads installation packages over plain http and does not perform file integrity validation after download. Man-in-the-middle attackers can replace the file with their own executable which will be executed under the...
CVE-2004-2409
Buffer overflow in the shhashcompdata function for Samhain 1.8.9 through 2.0.1, when running in update mode "-t update", might allow attackers to execute arbitrary code...
CVE-2004-2409
Buffer overflow in the shhashcompdata function for Samhain 1.8.9 through 2.0.1, when running in update mode "-t update", might allow attackers to execute arbitrary code...
CVE-2004-2409
Buffer overflow in the shhashcompdata function for Samhain 1.8.9 through 2.0.1, when running in update mode "-t update", might allow attackers to execute arbitrary code...
CVE-2004-2409
Buffer overflow in the shhashcompdata function for Samhain 1.8.9 through 2.0.1, when running in update mode "-t update", might allow attackers to execute arbitrary code...
DEBIAN-CVE-2004-2409
Buffer overflow in the shhashcompdata function for Samhain 1.8.9 through 2.0.1, when running in update mode "-t update", might allow attackers to execute arbitrary code...