Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
physical vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv3
CVE-2020-13471
Apex Microelectronics APM32F103 devices allow physical malicious users to execute arbitrary code via a power glitch and a specific flash patch/breakpoint unit configuration.
Apexmic Apm32f103 Firmware -
4.6
CVSSv3
CVE-2019-4351
IBM Maximo Anywhere 7.6.4.0 applications could disclose sensitive information to a user with physical access to the device. IBM X-Force ID: 161493.
Ibm Maximo Anywhere 7.6.4.0
6.8
CVSSv3
CVE-2020-22007
OS Command Injection vulnerability in OKER G955V1 v1.03.02.20161128, allows physical malicious users to interrupt the boot sequence and execute arbitrary commands with root privileges.
Okerthai G955v1 Firmware 1.03.02.20161128
6.8
CVSSv3
CVE-2022-25832
Improper authentication vulnerability in S Secure prior to SMR Apr-2022 Release 1 allows physical malicious users to use locked Myfiles app without authentication.
Google Android 11.0
Google Android 12.0
6.8
CVSSv3
CVE-2020-24514
Improper authentication in some Intel(R) RealSense(TM) IDs may allow an unauthenticated user to potentially enable escalation of privilege via physical access.
Intel Realsense Id F450 Firmware -
Intel Realsense Id F455 Firmware -
5.3
CVSSv3
CVE-2019-11626
routers/ajaxRouter.php in doorGets 7.0 has a web site physical path leakage vulnerability, as demonstrated by an ajax/index.php?uri=1234%5c request.
Doorgets Doorgets Cms 7.0
2.4
CVSSv3
CVE-2022-33706
Improper access control vulnerability in Samsung Gallery prior to version 13.1.05.8 allows physical malicious users to access the pictures using S Pen air gesture.
Samsung Samsung Gallery
4.3
CVSSv3
CVE-2022-27841
Improper exception handling in Samsung Pass prior to version 3.7.07.5 allows physical malicious user to view the screen that is previously running without authentication
Samsung Samsung Pass
4
CVSSv3
CVE-2016-0823
The pagemap_open function in fs/proc/task_mmu.c in the Linux kernel prior to 3.19.3, as used in Android 6.0.1 prior to 2016-03-01, allows local users to obtain sensitive physical-address information by reading a pagemap file, aka Android internal bug 25739721.
Google Android 6.0.1
Linux Linux Kernel
7.8
CVSSv3
CVE-2020-11178
Trusted APPS to overwrite the CPZ memory of another use-case as TZ only checks the physical address not overlapping with its memory and its RoT memory in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon M...
Qualcomm Aqt1000 Firmware -
Qualcomm Ar8031 Firmware -
Qualcomm Ar8035 Firmware -
Qualcomm Csra6620 Firmware -
Qualcomm Csra6640 Firmware -
Qualcomm Csrb31024 Firmware -
Qualcomm Fsm10055 Firmware -
Qualcomm Fsm10056 Firmware -
Qualcomm Mdm9205 Firmware -
Qualcomm Pm3003a Firmware -
Qualcomm Pm4125 Firmware -
Qualcomm Pm456 Firmware -
Qualcomm Pm6125 Firmware -
Qualcomm Pm6150 Firmware -
Qualcomm Pm6150a Firmware -
Qualcomm Pm6150l Firmware -
Qualcomm Pm6250 Firmware -
Qualcomm Pm6350 Firmware -
Qualcomm Pm640a Firmware -
Qualcomm Pm640l Firmware -
Qualcomm Pm640p Firmware -
Qualcomm Pm660 Firmware -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middle
CVE-2024-34558
CVE-2024-32674
CVE-2024-34351
XPath injection
CVE-2023-45866
CVE-2024-25528
CVE-2024-25517
path traversal
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »