Lucene search
K

1071 matches found

Positive Technologies
Positive Technologies
added 2026/05/15 12:0 a.m.15 views

PT-2026-41249

An out of bounds read within the AMD Platform Management Framework PMF could allow an attacker to trigger a read of an arbitrary memory location potentially resulting in loss of availability or confidentiality...

5.8CVSS5.9AI score0.00104EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/15 12:0 a.m.11 views

PT-2026-41242

Improper Input Validation in the AMD RAID driver could allow an attacker to point to an arbitrary memory location potentially resulting in privilege escalation and arbitrary code execution...

8.6CVSS6.1AI score0.00106EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/12 12:0 a.m.6 views

CVE-2026-31244

The mem0 1.0.0 server lacks authentication and authorization controls for its memory deletion API endpoint DELETE /memories/memoryid. The endpoint allows unauthenticated users to delete arbitrary memory records without verifying their identity or permissions. A remote attacker can exploit this by...

6AI score0.00386EPSS
Exploits0References2
Amd
Amd
added 2026/05/12 12:0 a.m.15 views

AMD RAID Driver Vulnerability

CVE Details Refer to Glossary for explanation of terms CVE| CVE Description| CVSS Score ---|---|--- CVE-2024-21962| Improper input validation in the AMD RAID driver could allow an attacker to point to an arbitrary memory location, potentially resulting in privilege escalation and arbitrary code...

8.6CVSS6.1AI score0.00106EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2026/05/07 1:15 a.m.13 views

CVE-2026-40003 USB-based arbitrary memory write vulnerability in ZTE ZX297520V3 soc BootROM

ZTE ZX297520V3 BootROM contains a vulnerability that allows arbitrary memory writes via USB. Attackers can exploit the lack of target address validation in the USB download mode to write data to any location in BootROM runtime memory, thereby overwriting the stack, hijacking the execution flow,...

5.1CVSS6.2AI score0.00296EPSS
Exploits1References1
CVE
CVE
added 2026/05/07 1:15 a.m.29 views

CVE-2026-40003

CVE-2026-40003 describes a USB-based arbitrary memory write vulnerability in the ZTE ZX297520V3 BootROM. The issue arises from lack of target address validation in the USB download mode, allowing writes to arbitrary locations in BootROM runtime memory. Potential consequences, as stated, include o...

6.8CVSS6.2AI score0.00296EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2026/05/07 12:0 a.m.14 views

ZTE ZX297520V3 缓冲区错误漏洞

ZTE ZX297520V3 is an industrial-grade 4G module from ZTE Corporation. The ZTE ZX297520V3 has a buffer error vulnerability. This vulnerability stems from the lack of target address verification in the USB download mode, which may allow arbitrary memory writes. As a result, it can overwrite the...

6.8CVSS6.3AI score0.00296EPSS
Exploits1References2
NVD
NVD
added 2026/05/01 5:16 p.m.13 views

CVE-2026-37534

Integer underflow vulnerability in Open-SAE-J1939 thru commit b6caf884df46435e539b1ecbf92b6c29b345bdfe 2025-11-30 in SAEJ1939ReadTransportProtocolDataTransfer,allows attackers to write to arbitrary memory via crafted sequence number from the CAN frame...

9.8CVSS0.00416EPSS
Exploits0References2
NVD
NVD
added 2026/05/01 4:16 p.m.6 views

CVE-2026-22167

Software installed and run as a non-privileged user may conduct improper GPU system calls to force GPU to write to arbitrary physical memory pages. Under certain circumstances this exploit could be used to corrupt data pages not allocated by the GPU driver but memory pages in use by the kernel an...

7.8CVSS0.00148EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/01 3:48 p.m.3 views

CVE-2026-22167

Software installed and run as a non-privileged user may conduct improper GPU system calls to force GPU to write to arbitrary physical memory pages. Under certain circumstances this exploit could be used to corrupt data pages not allocated by the GPU driver but memory pages in use by the kernel an...

7.8CVSS5.9AI score0.00148EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/01 3:48 p.m.2 views

CVE-2026-22167 GPU DDK - Cache resident PM buffers writable by other GPU requestors, leading to arbitrary write to physical memory

Software installed and run as a non-privileged user may conduct improper GPU system calls to force GPU to write to arbitrary physical memory pages. Under certain circumstances this exploit could be used to corrupt data pages not allocated by the GPU driver but memory pages in use by the kernel an...

5.9AI score0.00148EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/01 3:48 p.m.7 views

EUVD-2026-26664

Software installed and run as a non-privileged user may conduct improper GPU system calls to force GPU to write to arbitrary physical memory pages. Under certain circumstances this exploit could be used to corrupt data pages not allocated by the GPU driver but memory pages in use by the kernel an...

7.8CVSS5.9AI score0.00148EPSS
Exploits0References1
CVE
CVE
added 2026/05/01 3:48 p.m.19 views

CVE-2026-22167

CVE-2026-22167 concerns a GPU DDK vulnerability where cache-resident PM buffers can be written by other GPU requestors. The issue allows software running as a non-privileged user to issue improper GPU system calls, forcing the GPU to write to arbitrary physical memory pages. Under certain conditi...

7.8CVSS5.9AI score0.00148EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/05/01 3:48 p.m.31 views

CVE-2026-22167 GPU DDK - Cache resident PM buffers writable by other GPU requestors, leading to arbitrary write to physical memory

Software installed and run as a non-privileged user may conduct improper GPU system calls to force GPU to write to arbitrary physical memory pages. Under certain circumstances this exploit could be used to corrupt data pages not allocated by the GPU driver but memory pages in use by the kernel an...

0.00148EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/01 12:0 a.m.6 views

EUVD-2026-26687

Integer underflow vulnerability in Open-SAE-J1939 thru commit b6caf884df46435e539b1ecbf92b6c29b345bdfe 2025-11-30 in SAEJ1939ReadTransportProtocolDataTransfer,allows attackers to write to arbitrary memory via crafted sequence number from the CAN frame...

9.8CVSS5.9AI score0.00416EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/01 12:0 a.m.2 views

CVE-2026-37534

Integer underflow vulnerability in Open-SAE-J1939 thru commit b6caf884df46435e539b1ecbf92b6c29b345bdfe 2025-11-30 in SAEJ1939ReadTransportProtocolDataTransfer,allows attackers to write to arbitrary memory via crafted sequence number from the CAN frame...

9.8CVSS5.9AI score0.00416EPSS
Exploits0References3
CVE
CVE
added 2026/05/01 12:0 a.m.9 views

CVE-2026-37534

CVE-2026-37534 describes an integer underflow in Open-SAE-J1939 (Open-SAE-J1939_Read_Transport_Protocol_Data_Transfer) triggered by a crafted CAN frame sequence number, allowing an attacker to write to arbitrary memory. Affected component is SAE_J1939_Read_Transport_Protocol_Data_Transfer; root c...

9.8CVSS5.9AI score0.00416EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/01 12:0 a.m.6 views

CVE-2026-37534

Integer underflow vulnerability in Open-SAE-J1939 thru commit b6caf884df46435e539b1ecbf92b6c29b345bdfe 2025-11-30 in SAEJ1939ReadTransportProtocolDataTransfer,allows attackers to write to arbitrary memory via crafted sequence number from the CAN frame...

5.9AI score0.00416EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.7 views

PT-2026-36508

Name of the Vulnerable Software and Affected Versions Open-SAE-J1939 versions prior to commit b6caf884df46435e539b1ecbf92b6c29b345bdfe Description An integer underflow exists in the SAE J1939 Read Transport Protocol Data Transfer function. This allows attackers to write to arbitrary memory by usi...

9.8CVSS5.9AI score0.00416EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.10 views

PT-2026-36498

Software installed and run as a non-privileged user may conduct improper GPU system calls to force GPU to write to arbitrary physical memory pages. Under certain circumstances this exploit could be used to corrupt data pages not allocated by the GPU driver but memory pages in use by the kernel an...

5.9AI score0.00148EPSS
Exploits0References2
Rows per page
Query Builder