Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
physical vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2019-11626
routers/ajaxRouter.php in doorGets 7.0 has a web site physical path leakage vulnerability, as demonstrated by an ajax/index.php?uri=1234%5c request.
Doorgets Doorgets Cms 7.0
409
VMScore
CVE-2020-24514
Improper authentication in some Intel(R) RealSense(TM) IDs may allow an unauthenticated user to potentially enable escalation of privilege via physical access.
Intel Realsense Id F450 Firmware -
Intel Realsense Id F455 Firmware -
445
VMScore
CVE-2000-0753
The Microsoft Outlook mail client identifies the physical path of the sender's machine within a winmail.dat attachment to Rich Text Format (RTF) files.
Microsoft Outlook 97
Microsoft Outlook 98
Microsoft Outlook 2000
187
VMScore
CVE-2020-13463
The flash memory readout protection in Apex Microelectronics APM32F103 devices allows physical malicious users to extract firmware via the debug interface and exception handling.
Apexmic Apm32f103 Firmware -
169
VMScore
CVE-2022-27841
Improper exception handling in Samsung Pass prior to version 3.7.07.5 allows physical malicious user to view the screen that is previously running without authentication
Samsung Samsung Pass
409
VMScore
CVE-2022-25832
Improper authentication vulnerability in S Secure prior to SMR Apr-2022 Release 1 allows physical malicious users to use locked Myfiles app without authentication.
Google Android 11.0
Google Android 12.0
445
VMScore
CVE-2002-1990
Resin 2.0.5 up to and including 2.1.2 allows remote malicious users to reveal physical path information via a URL request for the example Java class file HelloServlet.
Caucho Technology Resin 2.1.2
Caucho Technology Resin 2.0
Caucho Technology Resin 2.1.1
NA
CVE-2020-22007
OS Command Injection vulnerability in OKER G955V1 v1.03.02.20161128, allows physical malicious users to interrupt the boot sequence and execute arbitrary commands with root privileges.
Okerthai G955v1 Firmware 1.03.02.20161128
641
VMScore
CVE-2020-11178
Trusted APPS to overwrite the CPZ memory of another use-case as TZ only checks the physical address not overlapping with its memory and its RoT memory in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon M...
Qualcomm Aqt1000 Firmware -
Qualcomm Ar8031 Firmware -
Qualcomm Ar8035 Firmware -
Qualcomm Csra6620 Firmware -
Qualcomm Csra6640 Firmware -
Qualcomm Csrb31024 Firmware -
Qualcomm Fsm10055 Firmware -
Qualcomm Fsm10056 Firmware -
Qualcomm Mdm9205 Firmware -
Qualcomm Pm3003a Firmware -
Qualcomm Pm4125 Firmware -
Qualcomm Pm456 Firmware -
Qualcomm Pm6125 Firmware -
Qualcomm Pm6150 Firmware -
Qualcomm Pm6150a Firmware -
Qualcomm Pm6150l Firmware -
Qualcomm Pm6250 Firmware -
Qualcomm Pm6350 Firmware -
Qualcomm Pm640a Firmware -
Qualcomm Pm640l Firmware -
Qualcomm Pm640p Firmware -
Qualcomm Pm660 Firmware -
188
VMScore
CVE-2016-0823
The pagemap_open function in fs/proc/task_mmu.c in the Linux kernel prior to 3.19.3, as used in Android 6.0.1 prior to 2016-03-01, allows local users to obtain sensitive physical-address information by reading a pagemap file, aka Android internal bug 25739721.
Google Android 6.0.1
Linux Linux Kernel
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-25525
CVE-2024-4652
CVE-2024-1438
CVE-2024-4671
CVE-2024-34351
arbitrary
CVE-2024-4650
SQL injection
overflow
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »