CVE-2025-36755 CleverDisplay BlueOne unauthorized BIOS access through physical USB keyboard

The CleverDisplay BlueOne hardware player is designed with its USB interfaces physically enclosed and inaccessible under normal operating conditions. Researchers demonstrated that, after cicumventing the device’s protective enclosure, it was possible to connect a USB keyboard and press ESC during...

EUVD-2003-1001

Malware in sbrugna...

EUVD-2009-2824

Malware in sbrugna...

EUVD-2016-9073

Malware in sbrugna...

CVE-2022-29586

Konica Minolta bizhub MFP devices before 2022-04-14 allow a Sandbox Escape. An attacker must attach a keyboard to a USB port, press F12, and then escape from the kiosk mode...

Cisco TelePresence CE Multiple Vulnerabilities (cisco-sa-roomos-trav-beFvCcyu)

According to its self-reported version, Cisco TelePresence Collaboration Endpoint Software is affected by multiple vulnerabilities: - A vulnerability in Cisco TelePresence CE could allow an authenticated, local attacker to view sensitive information on an affected device. This vulnerability exist...

SUSE: Security Advisory (SUSE-SU-2020:3255-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE-SU-2020:3255-1 Security update for u-boot

This update for u-boot fixes the following issues: CVE-2019-14192 bsc1143777, CVE-2019-14193 bsc1143817, CVE-2019-14199 bsc1143824, CVE-2019-14197 bsc1143821, CVE-2019-14200 bsc1143825, CVE-2019-14201 bsc1143827, CVE-2019-14202 bsc1143828, CVE-2019-14203 bsc1143830, CVE-2019-14204 bsc1143831,...

Buffer overflow

The British Airways Entertainment System, as installed on Boeing 777-36NER and possibly other aircraft, does not prevent the USB charging/data-transfer feature from interacting with USB keyboard and mouse devices, which allows physically proximate attackers to conduct unanticipated attacks agains...

CVE-2019-9019

The British Airways Entertainment System, as installed on Boeing 777-36NER and possibly other aircraft, does not prevent the USB charging/data-transfer feature from interacting with USB keyboard and mouse devices, which allows physically proximate attackers to conduct unanticipated attacks agains...

Design/Logic Flaw

An unquoted service path vulnerability was identified in the driver for the ThinkPad Compact USB Keyboard with TrackPoint versions earlier than 1.5.5.0. This could allow an attacker with local privileges to execute code with administrative privileges...

CVE-2017-3751

An unquoted service path vulnerability was identified in the driver for the ThinkPad Compact USB Keyboard with TrackPoint versions earlier than 1.5.5.0. This could allow an attacker with local privileges to execute code with administrative privileges...

CVE-2017-3751

CVE-2017-3751 affects the ThinkPad Compact USB Keyboard with TrackPoint driver versions earlier than 1.5.5.0. The issue is an unquoted service path in the driver, enabling an attacker with local privileges to execute code with administrative privileges. Lenovo’s LEN-15061 advisory confirms the im...

CVE-2017-3751

An unquoted service path vulnerability was identified in the driver for the ThinkPad Compact USB Keyboard with TrackPoint versions earlier than 1.5.5.0. This could allow an attacker with local privileges to execute code with administrative privileges...

CVE-2016-8225

Unquoted service path vulnerability in Lenovo Edge and Lenovo Slim USB Keyboard Driver versions earlier than 1.21 allows local users to execute code with elevated privileges...

Design/Logic Flaw

Unquoted service path vulnerability in Lenovo Edge and Lenovo Slim USB Keyboard Driver versions earlier than 1.21 allows local users to execute code with elevated privileges...

CVE-2016-8225

Unquoted service path vulnerability in Lenovo Edge and Lenovo Slim USB Keyboard Driver versions earlier than 1.21 allows local users to execute code with elevated privileges...

CVE-2016-8225

The CVE-2016-8225 entry concerns Lenovo Edge USB Keyboard Driver (also called Lenovo Slim USB Keyboard/Low Profile Keyboard) on Windows. The advisory LEN-11588 indicates a local privilege escalation vulnerability when the driver is prior to version 1.21. The root issue is exposed as a local explo...

USB Enhanced Performance Keyboard

Lenovo Security Advisory: LEN-2015-015 Potential Impact: Escalation of Privilege Severity: Low Summary: Lenovo’s “USB Enhanced Performance Keyboard” software has a known issue where debug code was accidently left in the application. The debug code includes information about which keys on the...

Lenovo Edge USB Keyboard Driver Local Privilege Escalation - us

Lenovo Security Advisory: LEN-11588 Potential Impact: Escalation of privileges by a local user Severity: High Scope of Impact: Lenovo-specific CVE Identifier: CVE-2016-8225 Summary Description: A vulnerability was identified in the Lenovo Edge USB Keyboard driver for Windows 7, 8 and 10 where a...