An image with a version lower than the fuse version may potentially be booted lead to improper authentication.
Improper authentication in the firmware for the Intel(R) Slim Bootloader may allow a privileged user to potentially enable escalation of privilege via local access.
Cryptographic issue occurs due to use of insecure connection method while downloading.
Cryptographic issue may occur while encrypting license data.
Initial xbl_sec revision does not have all the debug policy features and critical checks.
Memory corruption while loading an invalid firmware in boot loader.
Information disclosure while running video usecase having rogue firmware.
Cryptographic issue when a Trusted Zone with outdated code is triggered by a HLOS providing incorrect input.
Memory corruption can occur if an already verified IFS2 image is overwritten, bypassing boot verification. This allows unauthorized programs to be injected into security-sensitive images, enabling the
Servision - CWE-287: Improper Authentication
Improper access control for volatile memory containing boot code in Universal Boot Loader (U-Boot) before 2017.11 and Qualcomm chips IPQ4019, IPQ5018, IPQ5322, IPQ6018, IPQ8064, IPQ8074, and IPQ9574 c
Memory corruption while processing identity credential operations in the trusted application.
Information disclosure while parsing the multiple MBSSID IEs from the beacon.
The Semtech LR11xx LoRa transceivers implement secure boot functionality using digital signatures to authenticate firmware. However, the implementation uses a non-standard cryptographic hashing algori
Memory corruption when passing parameters to the Trusted Virtual Machine during the handshake.
There is a vulnerability in the Supermicro BMC firmware validation logic at Supermicro MBD-X13SEM-F . An attacker can update the system firmware with a specially crafted image.
There is a vulnerability in the Supermicro BMC firmware validation logic at Supermicro MBD-X13SEM-F . An attacker can update the system firmware with a specially crafted image.
Memory Corruption when a corrupted ELF image with an oversized file size is read into a buffer without authentication.
Cryptographic issue while processing crypto API calls, missing checks may lead to corrupted key usage or IV reuses.
Cryptographic Issue when a shared VM reference allows HLOS to boot loader and access cert chain.
Page 1+ Next →