Lucene search
K

294 matches found

Positive Technologies
Positive Technologies
added 2026/01/27 12:0 a.m.9 views

PT-2026-4911

A low privileged remote attacker may be able to disclose confidential information from the memory of a privileged process by sending specially crafted calls to the Device Manager web service that cause an out-of-bounds read operation under certain circumstances due to ASLR and thereby potentially...

5.3CVSS5.8AI score0.00309EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/01/22 4:17 p.m.4 views

CVE-2026-23763

VB-Audio Matrix and Matrix Coconut versions ending in 1.0.2.2 and 2.0.2.2 and earlier, respectively, contain a local privilege escalation vulnerability in the VBMatrix VAIO virtual audio driver vbmatrixvaio64win10.sys. The driver allocates a 128-byte non-paged pool buffer and, upon receiving IOCT...

8.5CVSS5.9AI score0.0016EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2026/01/22 4:17 p.m.8 views

CVE-2026-23763 VB-Audio Matrix Drivers Local Privilege Escalation via Kernel Memory Exposure

VB-Audio Matrix and Matrix Coconut versions ending in 1.0.2.2 and 2.0.2.2 and earlier, respectively, contain a local privilege escalation vulnerability in the VBMatrix VAIO virtual audio driver vbmatrixvaio64win10.sys. The driver allocates a 128-byte non-paged pool buffer and, upon receiving IOCT...

8.5CVSS6.2AI score0.0016EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.3 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000809)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000809 advisory. The archpickmmaplayout function in arch/x86/mm/mmap.c in the Linux kernel through 4.5.2 does not properly randomize the legacy base address, which makes it easier fo...

7.8CVSS7.4AI score0.0117EPSS
Exploits12References31
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000898)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000898 advisory. The Linux kernel version 3.3-rc1 and later is affected by a vulnerability lies in the processing of incoming L2CAP commands - ConfigRequest, and ConfigResponse...

7.5CVSS7.1AI score0.04252EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.3 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003532)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003532 advisory. An issue was discovered in the fdlockedioctl function in drivers/block/floppy.c in the Linux kernel through 4.15.7. The floppy driver will copy a kernel pointer to...

5.5CVSS6.5AI score0.00694EPSS
Exploits1References16
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.3 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002847)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002847 advisory. The acpinsterminate function in drivers/acpi/acpica/nsutils.c in the Linux kernel before 4.12 does not flush the operand cache and causes a kernel stack dump, which...

7.1CVSS6.5AI score0.00373EPSS
Exploits0References9
GithubExploit
GithubExploit
added 2025/12/31 8:42 a.m.205 views

ASLR-bypass-simulation

ASLR Bypass Simulator An interactive educational web applicat...

7.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/11/18 12:0 a.m.5 views

Mozilla Firefox < 51.0

The version of Firefox installed on the remote Windows host is prior to 51.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2017-01 advisory. - A use-after-free vulnerability in the Media Decoder when working with media files when some events are fired after the...

9.8CVSS7.6AI score0.33199EPSS
Exploits24References25
CVE
CVE
added 2025/11/12 12:20 a.m.15 views

CVE-2025-43205

CVE-2025-43205 describes an out-of-bounds access issue with improved bounds checking, fixed in watchOS 11.4, tvOS 18.4, visionOS 2.4, iOS 18.4 and iPadOS 18.4. The vulnerability may allow an attacker to bypass ASLR, with the Apple documentation indicating the issue affects Apple platforms and ver...

4CVSS5.8AI score0.00133EPSS
Exploits0References8Affected Software5
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2011-5254

Malware in sbrugna...

8.4CVSS6.4AI score0.00324EPSS
Exploits0References6
Gitee
Gitee
added 2025/09/14 6:34 p.m.90 views

ASLRay

This repository contains a Linux ELF x32/x64 ASLR DEP/NX bypass exploit with stack-spraying. The exploit targets the test binary, which is a simple program that takes a string argument and prints it. The exploit works by spraying the stack with a large amount of data, which increases the chances ...

7AI score
Exploits0
GithubExploit
GithubExploit
added 2025/09/02 3:47 a.m.237 views

Buffer_Overflow

Buffer Overflow May 2024 Linux Distribution: Ubuntu 8.10...

8.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/08/26 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2019-1010025

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GNU Libc current is affected by: Mitigation bypass. The impact is: Attacker may guess the heap addresses of pthreadcreated thread. The component is: glibc. NOTE...

5.3CVSS6.1AI score0.02286EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/08/22 4:35 p.m.5 views

CVE-2011-10024

MJM Core Player likely now referred to as MJM Player 2011 is vulnerable to a stack-based buffer overflow when parsing specially crafted .s3m music files. The vulnerability arises from improper bounds checking in the file parser, allowing an attacker to overwrite memory on the stack and execute...

8.4CVSS8.2AI score0.00331EPSS
Exploits0References1
NVD
NVD
added 2025/08/20 4:15 p.m.8 views

CVE-2011-10023

MJM QuickPlayer also known as MJM Player version 2010 contains a stack-based buffer overflow vulnerability triggered by opening a malicious .s3m music file. The flaw occurs due to improper bounds checking in the file parser, allowing an attacker to overwrite memory and execute arbitrary code...

8.4CVSS0.00324EPSS
Exploits0References5
CVE
CVE
added 2025/08/20 3:37 p.m.23 views

CVE-2011-10023

CVE-2011-10023 affects MJM QuickPlayer/Player (≈2010) with a stack-based buffer overflow in the .s3m file parser. The flaw stems from improper bounds checking, enabling memory overwrite and arbitrary code execution. Exploitation described uses a crafted payload that bypasses DEP/ASLR via ROP and ...

8.4CVSS6.3AI score0.00324EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/08/20 3:37 p.m.9 views

CVE-2011-10024 MJM Core Player 2011 .s3m File Stack-Based Buffer Overflow

MJM Core Player likely now referred to as MJM Player 2011 is vulnerable to a stack-based buffer overflow when parsing specially crafted .s3m music files. The vulnerability arises from improper bounds checking in the file parser, allowing an attacker to overwrite memory on the stack and execute...

8.4CVSS0.00331EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/08/19 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2014-7825

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - kernel/trace/tracesyscalls.c in the Linux kernel through 3.17.2 does not properly handle private syscall numbers during use of the perf subsystem, which allows...

7.8CVSS6.1AI score0.00568EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/08/12 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2019-11190

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Linux kernel before 4.8 allows local users to bypass ASLR on setuid programs such as /bin/su because installexeccreds is called too late in loadelfbinary in...

4.7CVSS6.4AI score0.00485EPSS
Exploits1References2
Rows per page
Query Builder