Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
physical vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-42575
Improper Authentication vulnerability in Samsung Pass prior to version 4.3.00.17 allows physical malicious users to bypass authentication due to invalid flag setting.
Samsung Pass
5
CVSSv2
CVE-2022-29945
DJI drone devices sold in 2017 through 2022 broadcast unencrypted information about the drone operator's physical location via the AeroScope protocol.
Dji Mavic 3 Firmware -
Dji Rc Pro Firmware -
Dji Air 2s Firmware -
Dji Air 2 Firmware -
Dji Mini 2 Firmware -
Dji Mini Se Firmware -
Dji Fpv Firmware -
Dji Fhantom 4 Pro Firmware -
Dji Inspire 2 Firmware -
Dji Zenmuse X7 Firmware -
Dji Zenmuse X5s Firmware -
5
CVSSv2
CVE-2021-25809
UCMS 1.5.0 exists to contain a physical path leakage via an error message returned by the adminchannelscache() function in top.php.
Ucms Project Ucms 1.5.0
NA
CVE-2022-36857
Improper Authorization vulnerability in Photo Editor prior to SMR Sep-2022 Release 1 allows physical malicious users to read internal application data.
Google Android 11.0
Samsung Photo Editor
2.1
CVSSv2
CVE-2019-0174
Logic condition in specific microprocessors may allow an authenticated user to potentially enable partial physical address information disclosure via local access.
Intel I9-9900x Firmware -
Intel I9-9920x Firmware -
Intel I9-9960x Firmware -
Intel I9-9980xe Firmware -
Intel I9-9940x Firmware -
Intel I9-7960x Firmware -
Intel I9-7980xe Firmware -
Intel I9-7940x Firmware -
Intel I9-7920x Firmware -
Intel I9-7900x Firmware -
Intel I7-7820x Firmware -
Intel I7-7800x Firmware -
Intel I5-4422e Firmware -
Intel I5-4410e Firmware -
Intel I5-4402ec Firmware -
Intel I5-4402e Firmware -
Intel I5-4400e Firmware -
Intel I5-4460t Firmware -
Intel I5-4460s Firmware -
Intel I5-4460 Firmware -
Intel I5-4440s Firmware -
Intel I5-4440 Firmware -
1 Article
4.3
CVSSv2
CVE-2019-12904
In Libgcrypt 1.8.4, the C implementation of AES is vulnerable to a flush-and-reload side-channel attack because physical addresses are available to other processes. (The C implementation is used on platforms where an assembly-language implementation is unavailable.) NOTE: the ven...
Gnupg Libgcrypt 1.8.4
Opensuse Leap 15.0
NA
CVE-2022-39873
Improper authorization vulnerability in Samsung Internet prior to version 18.0.4.14 allows physical malicious users to add bookmarks in secret mode without user authentication.
Samsung Internet
2.1
CVSSv2
CVE-2022-24001
Information disclosure vulnerability in Edge Panel prior to Android S(12) allows physical malicious users to access screenshot in clipboard via Edge Panel.
Google Android 12.0
NA
CVE-2023-21438
Improper logic in HomeScreen prior to SMR Feb-2023 Release 1 allows physical malicious user to access App preview protected by Secure Folder.
Samsung Android 11.0
Samsung Android 12.0
NA
CVE-2023-30903
HP-UX could be exploited locally to create a Denial of Service (DoS) when any physical interface is configured with IPv6/inet6.
Hp Hp-ux
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »