Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
physical vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-21489
Heap out-of-bounds write vulnerability in bootloader prior to SMR May-2023 Release 1 allows a physical malicious user to execute arbitrary code.
Samsung Android 11.0
Samsung Android 12.0
Samsung Android 13.0
4.6
CVSSv2
CVE-2020-24514
Improper authentication in some Intel(R) RealSense(TM) IDs may allow an unauthenticated user to potentially enable escalation of privilege via physical access.
Intel Realsense Id F450 Firmware -
Intel Realsense Id F455 Firmware -
NA
CVE-2024-20828
Improper authorization verification vulnerability in Samsung Internet prior to version 24.0 allows physical malicious users to access files downloaded in SecretMode without proper authentication.
Samsung Internet
7.2
CVSSv2
CVE-2020-13471
Apex Microelectronics APM32F103 devices allow physical malicious users to execute arbitrary code via a power glitch and a specific flash patch/breakpoint unit configuration.
Apexmic Apm32f103 Firmware -
4.6
CVSSv2
CVE-2022-25832
Improper authentication vulnerability in S Secure prior to SMR Apr-2022 Release 1 allows physical malicious users to use locked Myfiles app without authentication.
Google Android 11.0
Google Android 12.0
5
CVSSv2
CVE-2000-0122
Frontpage Server Extensions allows remote malicious users to determine the physical path of a virtual directory via a GET request to the htimage.exe CGI program.
Microsoft Frontpage 2000
Microsoft Frontpage 98
NA
CVE-2022-33730
Heap-based buffer overflow vulnerability in Samsung Dex for PC prior to SMR Aug-2022 Release 1 allows arbitrary code execution by physical attackers.
Google Android 12.0
NA
CVE-2022-25627
An authenticated administrator who has physical access to the environment can carry out Remote Command Execution on Management Console in Symantec Identity Manager 14.4
Broadcom Symantec Identity Governance And Administration 14.3
Broadcom Symantec Identity Governance And Administration 14.4
2.1
CVSSv2
CVE-2020-13472
The flash memory readout protection in Gigadevice GD32F103 devices allows physical malicious users to extract firmware via the debug interface by utilizing the DMA module.
Gigadevice Gd32f103 Firmware -
NA
CVE-2023-42533
Improper Input Validation with USB Gadget Interface prior to SMR Nov-2023 Release 1 allows a physical malicious user to execute arbitrary code in Kernel.
Samsung Android 12.0
Samsung Android 13.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
client side
CVE-2023-31889
template injection
CVE-2024-4304
CVE-2006-4304
CVE-2024-33272
type confusion
CVE-2024-21345
CVE-2024-33271
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »