Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
physical vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2019-11626
routers/ajaxRouter.php in doorGets 7.0 has a web site physical path leakage vulnerability, as demonstrated by an ajax/index.php?uri=1234%5c request.
Doorgets Doorgets Cms 7.0
2.4
CVSSv3
CVE-2023-21454
Improper authorization in Samsung Keyboard prior to SMR Mar-2023 Release 1 allows physical malicious user to access users text history on the lockscreen.
Samsung Android 11.0
Samsung Android 12.0
Samsung Android 13.0
6.8
CVSSv3
CVE-2023-21489
Heap out-of-bounds write vulnerability in bootloader prior to SMR May-2023 Release 1 allows a physical malicious user to execute arbitrary code.
Samsung Android 11.0
Samsung Android 12.0
Samsung Android 13.0
4.3
CVSSv3
CVE-2022-27841
Improper exception handling in Samsung Pass prior to version 3.7.07.5 allows physical malicious user to view the screen that is previously running without authentication
Samsung Samsung Pass
6.8
CVSSv3
CVE-2022-25832
Improper authentication vulnerability in S Secure prior to SMR Apr-2022 Release 1 allows physical malicious users to use locked Myfiles app without authentication.
Google Android 11.0
Google Android 12.0
2.4
CVSSv3
CVE-2022-33706
Improper access control vulnerability in Samsung Gallery prior to version 13.1.05.8 allows physical malicious users to access the pictures using S Pen air gesture.
Samsung Samsung Gallery
6.8
CVSSv3
CVE-2020-13465
The security protection in Gigadevice GD32F103 devices allows physical malicious users to redirect the control flow and execute arbitrary code via the debug interface.
Gigadevice Gd32f103 Firmware -
6.8
CVSSv3
CVE-2020-13471
Apex Microelectronics APM32F103 devices allow physical malicious users to execute arbitrary code via a power glitch and a specific flash patch/breakpoint unit configuration.
Apexmic Apm32f103 Firmware -
4
CVSSv3
CVE-2016-0823
The pagemap_open function in fs/proc/task_mmu.c in the Linux kernel prior to 3.19.3, as used in Android 6.0.1 prior to 2016-03-01, allows local users to obtain sensitive physical-address information by reading a pagemap file, aka Android internal bug 25739721.
Google Android 6.0.1
Linux Linux Kernel
7.8
CVSSv3
CVE-2020-11178
Trusted APPS to overwrite the CPZ memory of another use-case as TZ only checks the physical address not overlapping with its memory and its RoT memory in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon M...
Qualcomm Aqt1000 Firmware -
Qualcomm Ar8031 Firmware -
Qualcomm Ar8035 Firmware -
Qualcomm Csra6620 Firmware -
Qualcomm Csra6640 Firmware -
Qualcomm Csrb31024 Firmware -
Qualcomm Fsm10055 Firmware -
Qualcomm Fsm10056 Firmware -
Qualcomm Mdm9205 Firmware -
Qualcomm Pm3003a Firmware -
Qualcomm Pm4125 Firmware -
Qualcomm Pm456 Firmware -
Qualcomm Pm6125 Firmware -
Qualcomm Pm6150 Firmware -
Qualcomm Pm6150a Firmware -
Qualcomm Pm6150l Firmware -
Qualcomm Pm6250 Firmware -
Qualcomm Pm6350 Firmware -
Qualcomm Pm640a Firmware -
Qualcomm Pm640l Firmware -
Qualcomm Pm640p Firmware -
Qualcomm Pm660 Firmware -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »