Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
flash vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2021-4122
It was found that a specially crafted LUKS header could trick cryptsetup into disabling encryption during the recovery of the device. An attacker with physical access to the medium, such as a flash disk, could use this flaw to force a user into permanently disabling the encryptio...
Cryptsetup Project Cryptsetup
9.8
CVSSv3
CVE-2022-30264
The Emerson ROC and FloBoss RTU product lines through 2022-05-02 perform insecure filesystem operations. They utilize the ROC protocol (4000/TCP, 5000/TCP) for communications between a master terminal and RTUs. Opcode 203 of this protocol allows a master terminal to transfer file...
Emerson Dl8000 Firmware
Emerson Roc809 Firmware
Emerson Roc800l Firmware
Emerson Fb3000 Rtu Firmware
Emerson Roc827 Firmware
1 Article
7.5
CVSSv3
CVE-2022-38161
The Gumstix Overo SBC on the VSKS board through 2022-08-09, as used on the Orlan-10 and other platforms, allows unrestricted remapping of the NOR flash memory containing the bitstream for the FPGA.
Gumstix Overo Sbc
7.5
CVSSv3
CVE-2022-20866
A vulnerability in the handling of RSA keys on devices running Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to retrieve an RSA private key. This vulnerability is due to a l...
Cisco Adaptive Security Appliance Software
Cisco Firepower Threat Defense
1 Github repository
7.5
CVSSv3
CVE-2022-2591
A vulnerability classified as critical has been found in TEM FLEX-1085 1.6.0. Affected is an unknown function of the file /sistema/flash/reboot. The manipulation leads to denial of service. It is possible to launch the attack remotely. The exploit has been disclosed to the public...
Tem Flex-1085 Firmware 1.6.0
4.6
CVSSv3
CVE-2022-29948
Due to an insecure design, the Lepin EP-KP001 flash drive through KP001_V19 is vulnerable to an authentication bypass attack that enables an malicious user to gain access to the stored encrypted data. Normally, the encrypted disk partition with this data is unlocked by entering t...
Lepin Ep-kp001 Project Lepinep-kp001 Firmware
9.8
CVSSv3
CVE-2017-20025
A vulnerability was found in Solare Solar-Log 2.8.4-56/3.5.2-85. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Flash Memory. The manipulation leads to privilege escalation. The attack can be launched remotely. Upgrad...
Solar-log Solar-log 250 Firmware 2.8.4-56
Solar-log Solar-log 250 Firmware 3.5.2-85
Solar-log Solar-log 300 Firmware 2.8.4-56
Solar-log Solar-log 300 Firmware 3.5.2-85
Solar-log Solar-log 500 Firmware 2.8.4-56
Solar-log Solar-log 500 Firmware 3.5.2-85
Solar-log Solar-log 800e Firmware 2.8.4-56
Solar-log Solar-log 800e Firmware 3.5.2-85
Solar-log Solar-log 1000 Firmware 2.8.4-56
Solar-log Solar-log 1000 Firmware 3.5.2-85
Solar-log Solar-log 1000 Pm\\+ Firmware 2.8.4-56
Solar-log Solar-log 1000 Pm\\+ Firmware 3.5.2-85
Solar-log Solar-log 1200 Firmware 2.8.4-56
Solar-log Solar-log 1200 Firmware 3.5.2-85
Solar-log Solar-log 2000 Firmware 2.8.4-56
Solar-log Solar-log 2000 Firmware 3.5.2-85
9.8
CVSSv3
CVE-2022-29246
Azure RTOS USBX is a USB host, device, and on-the-go (OTG) embedded stack. Prior to version 6.1.11, he USBX DFU UPLOAD functionality may be utilized to introduce a buffer overflow resulting in overwrite of memory contents. In particular cases this may allow an malicious user to b...
Microsoft Azure Rtos Usbx
9.8
CVSSv3
CVE-2022-28618
A command injection security vulnerability has been identified in HPE Nimble Storage Hybrid Flash Arrays, HPE Nimble Storage All Flash Arrays and HPE Nimble Storage Secondary Flash Arrays that could allow an malicious user to execute arbitrary commands on a Nimble appliance. HPE ...
Hpe Nimbleos
7.8
CVSSv3
CVE-2021-26317
Failure to verify the protocol in SMM may allow an malicious user to control the protocol and modify SPI flash resulting in a potential arbitrary code execution.
Amd Radeon Software -
Amd Ryzen 3 2200u Firmware -
Amd Ryzen 5300g Firmware -
Amd Ryzen 5300ge Firmware -
Amd Ryzen 5600g Firmware -
Amd Ryzen 5600ge Firmware -
Amd Ryzen 5600x Firmware -
Amd Ryzen 5700g Firmware -
Amd Ryzen 5700ge Firmware -
Amd Athlon 3050ge Firmware -
Amd Athlon 3150g Firmware -
Amd Athlon 3150ge Firmware -
Amd Ryzen 5800x Firmware -
Amd Ryzen 5800x3d Firmware -
Amd Ryzen 5900x Firmware -
Amd Ryzen 5950x Firmware -
Amd Ryzen 9 3900x Firmware -
Amd Ryzen 9 3950x Firmware -
Amd Ryzen 9 5900hs Firmware -
Amd Ryzen 9 5900hx Firmware -
Amd Ryzen 9 5980hs Firmware -
Amd Ryzen 9 5980hx Firmware -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »