Ferdinand Nölscher

**Name of the Vulnerable Software and Affected Versions** Cisco NX-OS Software (affected versions not specified) **Description** A vulnerability in the bootloader of Cisco NX-OS Software could allow an unauthenticated attacker with physical access to an affected device, or an authenticated, local attacker with administrative credentials, to bypass NX-OS image signature verification. This vulnerability is due to insecure bootloader settings. An attacker could exploit this vulnerability by executing a series of bootloader commands. A successful exploit could allow the attacker to bypass NX-OS image signature verification and load unverified software. The issue affects over 100 models, including MDS 9000, Nexus 3000/7000/9000. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Nuvoton NPCM7xx BMC subsystem (affected versions not specified) **Description** The issue is related to an authentication bypass weakness in the Nuvoton BootBlock reference code used in the Nuvoton NPCM7xx BMC subsystem. An attacker with write access to the SPI-Flash can modify the u-boot image header, potentially leading to arbitrary code execution. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Xen versions (affected versions not specified) Linux kernel versions (affected versions not specified) **Description** The issue is related to insufficient input validation in the libfsimage component of the Xen hypervisor and Linux kernel. This could allow an attacker to impact the confidentiality, integrity, and availability of data. **Recommendations** For Xen, update to a version that includes the fix for this issue. For Linux kernel, apply the necessary patches or configuration changes to address the insufficient input validation in the libfsimage component. As a temporary workaround, consider restricting access to the libfsimage component until a patch is available.