Skip to main content

CWE-1299

Missing Protection Mechanism for Alternate Hardware Interface

8 CVEs Avg CVSS 5.8 MITRE
0
CRITICAL
2
HIGH
5
MEDIUM
1
LOW
0
POC
0
KEV

Monthly

CVE-2025-35998 HIGH This Week

Privilege escalation in Intel QuickAssist Technology (QAT) on certain Intel platforms allows a system-software adversary already holding privileged (Ring 0 / kernel-level) access to read and corrupt kernel state via an unprotected alternate hardware interface. The flaw stems from a missing protection mechanism on a secondary hardware control path, yielding high confidentiality and integrity impact but no availability loss. There is no public exploit identified at time of analysis, EPSS is negligible (0.01%), and it is not listed in CISA KEV.

Privilege Escalation Intel
NVD VulDB
CVSS 4.0
7.0
EPSS
0.0%
CVE-2025-1073 HIGH This Week

Panasonic IR Control Hub (IR Blaster) versions 1.17 and earlier may allow an attacker with physical access to load unauthorized firmware onto the device. Rated high severity (CVSS 7.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass
NVD
CVSS 3.1
7.5
EPSS
0.1%
CVE-2024-47944 MEDIUM This Month

The device directly executes .patch firmware upgrade files on a USB stick without any prior authentication in the admin interface. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE
NVD
CVSS 3.1
6.8
EPSS
0.4%
CVE-2024-39723 MEDIUM This Month

IBM FlashSystem 5300 USB ports may be usable even if the port has been disabled by the administrator. Rated medium severity (CVSS 4.6), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

IBM Information Disclosure Storage Virtualize
NVD
CVSS 3.1
4.6
EPSS
0.2%
CVE-2023-29063 LOW Monitor

The FACSChorus workstation does not prevent physical access to its PCI express (PCIe) slots, which could allow a threat actor to insert a PCI card designed for memory capture. Rated low severity (CVSS 2.4), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Facschorus
NVD
CVSS 3.1
2.4
EPSS
0.2%
CVE-2023-29060 MEDIUM This Month

The FACSChorus workstation operating system does not restrict what devices can interact with its USB ports. Rated medium severity (CVSS 5.7), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Facschorus
NVD
CVSS 3.1
5.7
EPSS
0.3%
CVE-2022-43557 MEDIUM This Month

The BD BodyGuard™ infusion pumps specified allow for access through the RS-232 (serial) port interface. Rated medium severity (CVSS 5.3), this vulnerability is no authentication required. No vendor patch available.

Information Disclosure Bodyguard 999 603 Firmware Bodyguard Duo 999 903 Firmware Bodyguard Epidural 999 683 Firmware Bodyguard Pain Manager 999 803 Firmware +3
NVD
CVSS 3.1
5.3
EPSS
0.2%
CVE-2021-3788 MEDIUM This Month

An exposed debug interface was reported in some Motorola-branded Binatone Hubble Cameras that could allow an attacker with physical access unauthorized access to the device. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Halo Camera Firmware Comfort 85 Connect Firmware Mbp3855 Firmware Focus 68 Firmware +17
NVD
CVSS 3.1
6.8
EPSS
0.2%
EPSS 0% CVSS 7.0
HIGH This Week

Privilege escalation in Intel QuickAssist Technology (QAT) on certain Intel platforms allows a system-software adversary already holding privileged (Ring 0 / kernel-level) access to read and corrupt kernel state via an unprotected alternate hardware interface. The flaw stems from a missing protection mechanism on a secondary hardware control path, yielding high confidentiality and integrity impact but no availability loss. There is no public exploit identified at time of analysis, EPSS is negligible (0.01%), and it is not listed in CISA KEV.

Privilege Escalation Intel
NVD VulDB
EPSS 0% CVSS 7.5
HIGH This Week

Panasonic IR Control Hub (IR Blaster) versions 1.17 and earlier may allow an attacker with physical access to load unauthorized firmware onto the device. Rated high severity (CVSS 7.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass
NVD
EPSS 0% CVSS 6.8
MEDIUM This Month

The device directly executes .patch firmware upgrade files on a USB stick without any prior authentication in the admin interface. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE
NVD
EPSS 0% CVSS 4.6
MEDIUM This Month

IBM FlashSystem 5300 USB ports may be usable even if the port has been disabled by the administrator. Rated medium severity (CVSS 4.6), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

IBM Information Disclosure Storage Virtualize
NVD
EPSS 0% CVSS 2.4
LOW Monitor

The FACSChorus workstation does not prevent physical access to its PCI express (PCIe) slots, which could allow a threat actor to insert a PCI card designed for memory capture. Rated low severity (CVSS 2.4), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Facschorus
NVD
EPSS 0% CVSS 5.7
MEDIUM This Month

The FACSChorus workstation operating system does not restrict what devices can interact with its USB ports. Rated medium severity (CVSS 5.7), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Facschorus
NVD
EPSS 0% CVSS 5.3
MEDIUM This Month

The BD BodyGuard™ infusion pumps specified allow for access through the RS-232 (serial) port interface. Rated medium severity (CVSS 5.3), this vulnerability is no authentication required. No vendor patch available.

Information Disclosure Bodyguard 999 603 Firmware Bodyguard Duo 999 903 Firmware +5
NVD
EPSS 0% CVSS 6.8
MEDIUM This Month

An exposed debug interface was reported in some Motorola-branded Binatone Hubble Cameras that could allow an attacker with physical access unauthorized access to the device. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Halo Camera Firmware Comfort 85 Connect Firmware +19
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy