Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
physical vulnerabilities and exploits
(subscribe to this query)
4.6
CVSSv3
CVE-2020-13463
The flash memory readout protection in Apex Microelectronics APM32F103 devices allows physical malicious users to extract firmware via the debug interface and exception handling.
Apexmic Apm32f103 Firmware -
4.6
CVSSv3
CVE-2020-13469
The flash memory readout protection in Gigadevice GD32VF103 devices allows physical malicious users to extract firmware via the debug interface by utilizing the CPU.
Gigadevice Gd32vf103 Firmware -
NA
CVE-2000-0753
The Microsoft Outlook mail client identifies the physical path of the sender's machine within a winmail.dat attachment to Rich Text Format (RTF) files.
Microsoft Outlook 97
Microsoft Outlook 98
Microsoft Outlook 2000
4.6
CVSSv3
CVE-2019-4351
IBM Maximo Anywhere 7.6.4.0 applications could disclose sensitive information to a user with physical access to the device. IBM X-Force ID: 161493.
Ibm Maximo Anywhere 7.6.4.0
6.8
CVSSv3
CVE-2020-22007
OS Command Injection vulnerability in OKER G955V1 v1.03.02.20161128, allows physical malicious users to interrupt the boot sequence and execute arbitrary commands with root privileges.
Okerthai G955v1 Firmware 1.03.02.20161128
6.8
CVSSv3
CVE-2020-13465
The security protection in Gigadevice GD32F103 devices allows physical malicious users to redirect the control flow and execute arbitrary code via the debug interface.
Gigadevice Gd32f103 Firmware -
6.8
CVSSv3
CVE-2023-42561
Heap out-of-bounds write vulnerability in bootloader prior to SMR Dec-2023 Release 1 allows a physical malicious user to execute arbitrary code.
Samsung Android 14.0
Samsung Android
6.8
CVSSv3
CVE-2022-25832
Improper authentication vulnerability in S Secure prior to SMR Apr-2022 Release 1 allows physical malicious users to use locked Myfiles app without authentication.
Google Android 11.0
Google Android 12.0
7.8
CVSSv3
CVE-2020-11178
Trusted APPS to overwrite the CPZ memory of another use-case as TZ only checks the physical address not overlapping with its memory and its RoT memory in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon M...
Qualcomm Aqt1000 Firmware -
Qualcomm Ar8031 Firmware -
Qualcomm Ar8035 Firmware -
Qualcomm Csra6620 Firmware -
Qualcomm Csra6640 Firmware -
Qualcomm Csrb31024 Firmware -
Qualcomm Fsm10055 Firmware -
Qualcomm Fsm10056 Firmware -
Qualcomm Mdm9205 Firmware -
Qualcomm Pm3003a Firmware -
Qualcomm Pm4125 Firmware -
Qualcomm Pm456 Firmware -
Qualcomm Pm6125 Firmware -
Qualcomm Pm6150 Firmware -
Qualcomm Pm6150a Firmware -
Qualcomm Pm6150l Firmware -
Qualcomm Pm6250 Firmware -
Qualcomm Pm6350 Firmware -
Qualcomm Pm640a Firmware -
Qualcomm Pm640l Firmware -
Qualcomm Pm640p Firmware -
Qualcomm Pm660 Firmware -
4
CVSSv3
CVE-2016-0823
The pagemap_open function in fs/proc/task_mmu.c in the Linux kernel prior to 3.19.3, as used in Android 6.0.1 prior to 2016-03-01, allows local users to obtain sensitive physical-address information by reading a pagemap file, aka Android internal bug 25739721.
Google Android 6.0.1
Linux Linux Kernel
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
spoof
CVE-2024-34928
CVE-2024-5291
deserialization
CVE-2024-4471
CVE-2024-4956
CVE-2024-32002
CVE-2024-5227
unspecified
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »