Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
physical vulnerabilities and exploits
(subscribe to this query)
6.9
CVSSv3
CVE-2020-7323
Authentication Protection Bypass vulnerability in McAfee Endpoint Security (ENS) for Windows before 10.7.0 September 2020 Update allows physical local users to bypass the Windows lock screen via triggering certain detection events while the computer screen is locked and the McTra...
Mcafee Endpoint Security
4.2
CVSSv3
CVE-2021-39899
In all versions of GitLab CE/EE, an attacker with physical access to a user’s machine may brute force the user’s password via the change password function. There is a rate limit in place, but the attack may still be conducted by stealing the session id from the physic...
Gitlab Gitlab
7.8
CVSSv3
CVE-2023-21642
Memory corruption in HAB Memory management due to broad system privileges via physical address.
Qualcomm Qam8295p Firmware -
Qualcomm Qca6574au Firmware -
Qualcomm Qca6696 Firmware -
Qualcomm Sa6145p Firmware -
Qualcomm Sa6150p Firmware -
Qualcomm Sa6155p Firmware -
Qualcomm Sa8145p Firmware -
Qualcomm Sa8150p Firmware -
Qualcomm Sa8155p Firmware -
Qualcomm Sa8195p Firmware -
Qualcomm Sa8295p Firmware -
Qualcomm Sa8540p Firmware -
Qualcomm Sa9000p Firmware -
7.8
CVSSv3
CVE-2021-28685
AsIO2_64.sys and AsIO2_32.sys in ASUS GPUTweak II prior to 2.3.0.3 allow low-privileged users to interact directly with physical memory (by calling one of several driver routines that map physical memory into the virtual address space of the calling process) and to interact with ...
Asus Gputweak Ii
7.8
CVSSv3
CVE-2021-41285
Ballistix MOD Utility up to and including 2.0.2.5 is vulnerable to privilege escalation in the MODAPI.sys driver component. The vulnerability is triggered by sending a specific IOCTL request that allows low-privileged users to directly interact with physical memory via the MmMapI...
Micron Ballistix Memory Overview Display Utility
NA
CVE-2024-26795
In the Linux kernel, the following vulnerability has been resolved: riscv: Sparse-Memory/vmemmap out-of-bounds fix Offset vmemmap so that the first page of vmemmap will be mapped to the first page of physical memory in order to ensure that vmemmap’s bounds will be respected...
7.5
CVSSv3
CVE-2018-9014
dsmall v20180320 allows physical path leakage via a public/index.php/home/predeposit/index.html?pdr_sn= request.
Dsmall Project Dsmall 20180320
NA
CVE-2010-0414
gnome-screensaver prior to 2.28.2 allows physically proximate malicious users to bypass screen locking and access an unattended workstation by moving the mouse position to an external monitor and then disconnecting that monitor.
Gnome Screensaver 2.20.0
Gnome Screensaver 2.20
Gnome Screensaver 2.28.0
Gnome Screensaver 2.26.1
Gnome Screensaver 2.13
Gnome Screensaver
NA
CVE-1999-0348
IIS ASP caching problem releases sensitive information when two virtual servers share the same physical directory.
Microsoft Internet Information Server 4.0
6.8
CVSSv3
CVE-2023-30560
The configuration from the PCU can be modified without authentication using physical connection to the PCU.
Bd Alaris 8015 Pcu Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
CVE-2006-4304
wireless
CVE-2023-23022
local file inclusion
CVE-2024-27058
CVE-2024-33820
open redirect
CVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »