Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
physical vulnerabilities and exploits
(subscribe to this query)
4.6
CVSSv3
CVE-2019-4351
IBM Maximo Anywhere 7.6.4.0 applications could disclose sensitive information to a user with physical access to the device. IBM X-Force ID: 161493.
Ibm Maximo Anywhere 7.6.4.0
6.8
CVSSv3
CVE-2020-22007
OS Command Injection vulnerability in OKER G955V1 v1.03.02.20161128, allows physical malicious users to interrupt the boot sequence and execute arbitrary commands with root privileges.
Okerthai G955v1 Firmware 1.03.02.20161128
NA
CVE-2002-1990
Resin 2.0.5 up to and including 2.1.2 allows remote malicious users to reveal physical path information via a URL request for the example Java class file HelloServlet.
Caucho Technology Resin 2.1.2
Caucho Technology Resin 2.0
Caucho Technology Resin 2.1.1
5.3
CVSSv3
CVE-2019-11626
routers/ajaxRouter.php in doorGets 7.0 has a web site physical path leakage vulnerability, as demonstrated by an ajax/index.php?uri=1234%5c request.
Doorgets Doorgets Cms 7.0
6.8
CVSSv3
CVE-2020-13471
Apex Microelectronics APM32F103 devices allow physical malicious users to execute arbitrary code via a power glitch and a specific flash patch/breakpoint unit configuration.
Apexmic Apm32f103 Firmware -
NA
CVE-2000-0753
The Microsoft Outlook mail client identifies the physical path of the sender's machine within a winmail.dat attachment to Rich Text Format (RTF) files.
Microsoft Outlook 97
Microsoft Outlook 98
Microsoft Outlook 2000
4.6
CVSSv3
CVE-2020-13463
The flash memory readout protection in Apex Microelectronics APM32F103 devices allows physical malicious users to extract firmware via the debug interface and exception handling.
Apexmic Apm32f103 Firmware -
6.8
CVSSv3
CVE-2020-13465
The security protection in Gigadevice GD32F103 devices allows physical malicious users to redirect the control flow and execute arbitrary code via the debug interface.
Gigadevice Gd32f103 Firmware -
4.6
CVSSv3
CVE-2020-13469
The flash memory readout protection in Gigadevice GD32VF103 devices allows physical malicious users to extract firmware via the debug interface by utilizing the CPU.
Gigadevice Gd32vf103 Firmware -
6.8
CVSSv3
CVE-2020-24514
Improper authentication in some Intel(R) RealSense(TM) IDs may allow an unauthenticated user to potentially enable escalation of privilege via physical access.
Intel Realsense Id F450 Firmware -
Intel Realsense Id F455 Firmware -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »