-
This hub aggregates every CVE we track for -, a product in the hardware firmware space. Use it to gauge the current risk picture and drill into individual advisories.
13
CVEs tracked
1
Critical
9
High
0
In CISA KEV
Severity distribution
HIGH9MEDIUM2LOW1CRITICAL1
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 13 most recently published vulnerabilities affecting -.
- CVE-2021-38154Certain Canon devices manufactured in 2012 through 2020 (such as imageRUNNER ADVANCE iR-ADV C5250), when Catwalk Server is enabled for HTTP access, allow remote attackers to modify an e-mail addres...7.5
- CVE-2021-24087Azure IoT CLI extension Elevation of Privilege Vulnerability7.0
- CVE-2020-3681Authenticated and encrypted payload MMEs can be forged and remotely sent to any HPAV2 system using a jailbreak key recoverable from code.9.8
- CVE-2019-0162Memory access in virtual memory mapping for some microprocessors may allow an authenticated user to potentially enable information disclosure via local access.3.8
- CVE-2017-13096The P1735 IEEE standard describes flawed methods for encrypting electronic-design intellectual property (IP), including modification of Rights Block to remove or relax access control7.8
- CVE-2017-13092The P1735 IEEE standard describes flawed methods for encrypting electronic-design intellectual property (IP), including improperly specified HDL syntax allows use of an EDA tool as a decryption oracle7.8
- CVE-2017-13094The P1735 IEEE standard describes flawed methods for encrypting electronic-design intellectual property (IP), including modification of the encryption key and insertion of hardware trojans in any IP7.8
- CVE-2017-13093The P1735 IEEE standard describes flawed methods for encrypting electronic-design intellectual property (IP), including modification of encrypted IP cyphertext to insert hardware trojans7.8
- CVE-2017-13091The P1735 IEEE standard describes flawed methods for encrypting electronic-design intellectual property (IP), including improperly specified padding in CBC mode allows use of an EDA tool as a decryption oracle7.8
- CVE-2017-13097The P1735 IEEE standard describes flawed methods for encrypting electronic-design intellectual property (IP), including modification of Rights Block to remove or relax license requirement7.8
- CVE-2017-13095The P1735 IEEE standard describes flawed methods for encrypting electronic-design intellectual property (IP), including modification of a license-deny response to a license grant7.8
- BDU:2017-00760Уязвимость микропрограммного обеспечения материнских плат с чипсетом Intel NUC, позволяющая нарушителю получить контроль над системой6.0
- BDU:2017-00759Уязвимость микропрограммного обеспечения материнских плат с чипсетом Intel NUC, позволяющая нарушителю получить контроль над системой6.0
Product normalization is registry-driven with AI assist and human review. How it works