CVEs classified under CWE-1274, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2022-2484 — CVSS 8.4 (high): The signature check in the Nokia ASIK AirScale system module version 474021A.101 can be bypassed allowing an attacker to run modified…
CVE-2022-2482 — CVSS 8.4 (high): A vulnerability exists in Nokia’s ASIK AirScale system module (versions 474021A.101 and 474021A.102) that could allow an attacker to…
CVE-2025-59404 — CVSS 7.5 (high): Flock Safety Bravo Edge AI Compute Device BRAVO_00.00_local_20241017 ships with its bootloader unlocked. This permits bypass of Android…
CVE-2023-31345 — CVSS 7.5 (high): Improper input validation in the SMM handler may allow a privileged attacker to overwrite SMRAM, potentially leading to arbitrary code…
CVE-2025-29950: Improper input validation in system management mode (SMM) could allow a privileged attacker to overwrite stack memory leading to arbitrary…
CVE-2025-59694 — CVSS 6.8 (medium): The Chassis Management Board in Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allows a physically…
CVE-2025-4043 — CVSS 6.8 (medium): An admin user can gain unauthorized write access to the /etc/rc.local file on the device, which is executed on a system boot.
CVE-2024-36345: Improper input validation in the AMD OverDrive (AOD) System Management Mode (SMM) module could allow a privileged attacker to perform an…