Lucene search
K

1693 matches found

CVE
CVE
added 2 days ago9 views

CVE-2026-15506

CVE-2026-15506 affects SecureAge CatchPulse (up to 10.9.3). The vulnerable element is an unknown function in the saappctl.sys driver library, where manipulation leads to a heap-based buffer overflow. Exploitation is local, and publicly disclosed exploits exist. The vendor was contacted about this...

8.5CVSS6.6AI score0.00184EPSS
Exploits0References6
EUVD
EUVD
added 6 days ago7 views

EUVD-2026-42340

Horde Virtual File System VFS API before 3.0.1 contains an OS command injection vulnerability in the HordeVfsSmb driver where the escapeShellCommand method fails to sanitize command substitution sequences, allowing authenticated attackers to inject arbitrary shell commands through user-controlled...

8.8CVSS6.2AI score0.01803EPSS
Exploits0References4
NVD
NVD
added last week10 views

CVE-2026-57851

MSI Feature Manager contains a local privilege escalation vulnerability in the KernCoreLib64.sys kernel driver that allows any locally logged-on user to perform arbitrary physical memory read/write and unrestricted I/O port operations by accessing exposed IOCTL handlers without administrator...

8.5CVSS0.0017EPSS
Exploits0References2
NVD
NVD
added 2026/07/03 3:16 a.m.8 views

CVE-2022-4989

UNSUPPORTED WHEN ASSIGNED Improper Validation of Specified Quantity in Input in the ASUS AI Suite 3 driver allows a local user to access unintended memory regions via crafted IOCTL requests, leading to privilege escalation...

8.5CVSS0.00103EPSS
Exploits0References1
EUVD
EUVD
added 2026/07/03 2:0 a.m.6 views

EUVD-2022-56010

UNSUPPORTED WHEN ASSIGNED Improper Validation of Specified Quantity in Input in the ASUS AI Suite 3 driver allows a local user to bypass security validation and access restricted memory blocks via crafted IOCTL requests, leading to privilege escalation...

7.3CVSS5.8AI score0.00096EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/07/02 2:36 p.m.35 views

CVE-2026-12168 CVE-2026-12168

An improper validation vulnerability for driver GFACSysx64.sys in Little Orbit GFAC allows a local attacker to escalate privileges to SYSTEM and execute arbitrary code in kernel mode via crafted messages sent through a Minifilter communication port...

0.0013EPSS
Exploits0References3
CVE
CVE
added 2026/07/02 2:36 p.m.10 views

CVE-2026-12168

The CVE-2026-12168 entry concerns the Little Orbit GFAC product, specifically the GFAC_Sys_x64.sys driver. The vulnerability is described as an improper validation in the Minifilter communication port handling, allowing a local attacker to escalate privileges to SYSTEM and execute arbitrary kerne...

7.8CVSS6.1AI score0.0013EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/07/02 12:0 a.m.15 views

PT-2026-55230

Name of the Vulnerable Software and Affected Versions Little Orbit GFAC affected versions not specified Description Improper validation and a NULL pointer dereference a condition where the software attempts to read from a memory address that is null, leading to a crash in the GFAC Sys x64.sys...

7.8CVSS6.3AI score0.0013EPSS
Exploits0References8
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.6 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerabilities have been resolved: wifi: rtw88: 8822b: Avoid warnings in rtw8822bconfigtrxmode The function rtw8822bsetantenna can be called from userspace when the chip is powered off. In that case, a warning is triggered in rtw8822bconfigtrxmode, because...

5.5CVSS5.9AI score0.00123EPSS
Exploits0References2
CVE
CVE
added 2026/06/21 6:0 a.m.23 views

CVE-2026-12782

The CVE-2026-12782 entry concerns EaseUS Partition Master (up to 14.5). The affected component is EUEDKEPM.sys (Kernel Driver); a flaw in an unknown function leads to improper access controls. It requires local access to exploit, and an exploit has been publicly released. Impact is described as h...

8.5CVSS6.6AI score0.00109EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/06/20 12:28 a.m.10 views

kernel: Buffer overflow in drivers/xen/sys-hypervisor.c

A flaw was found in the Linux kernel. A buffer overflow vulnerability exists in the Xen hypervisor driver drivers/xen/sys-hypervisor.c. This flaw occurs because the HYPERVISORxenversionXENVERbuildid function returns a build ID that is not properly null-terminated. When the buildidshow function...

7.8CVSS6.1AI score0.00197EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/06/20 12:0 a.m.25 views

PT-2026-51188

Name of the Vulnerable Software and Affected Versions AOMEI Partition Assistant versions prior to 10.10.2 Description Improper access controls exist within the Kernel Driver component, specifically affecting unknown code in the ampa10.sys library. This issue allows a local attacker to manipulate...

8.5CVSS7.2AI score0.00113EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2026/06/20 12:0 a.m.7 views

MiracleLinux 8 : hplip-3.18.4-13.el8_10.ML.1 (AXSA:2026-798:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2026-798:01 advisory. HPLIP: HPLIP: Privilege escalation and arbitrary code execution via operating system command injection CVE-2026-8632 HPLIP: HPLIP: Arbitrary code...

9.8CVSS6.6AI score0.01333EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/12 12:0 a.m.20 views

PT-2026-49022

Name of the Vulnerable Software and Affected Versions Imagination Graphics DDK affected versions not specified Description A web page containing unusual WebGPU content loaded into the GPU GLES render process can trigger an out-of-bound write in the GPU user-space driver. This occurs because the...

9.8CVSS5.3AI score0.00358EPSS
Exploits0References5
AlmaLinux
AlmaLinux
added 2026/06/11 12:0 a.m.17 views

Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: scsi: target: iscsi: Fix use-after-free in iscsitdecconnusagecount CVE-2026-23216 kernel: Linux kernel: Use-after-free in bonding driver leads to denial of service CVE-2026-31419 kernel:...

9.8CVSS5.7AI score0.00563EPSS
Exploits0References24
Vulnrichment
Vulnrichment
added 2026/06/09 5:4 p.m.9 views

CVE-2026-34335 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

...

7CVSS5.4AI score0.00234EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2026/06/06 7:25 a.m.105 views

Exploit for Heap-based Buffer Overflow in Mediatek Mt6890_Firmware

CVE-2026-20452 — MediaTek WLAN AP Heap Overflow PoC Proof of...

8CVSS5.8AI score0.00435EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2026/06/05 7:51 p.m.13 views

CVE-2025-56534

A cross-site scripting XSS vulnerability in the custom authenticator driver of opennebula v6.10.0.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

6.1CVSS5.6AI score0.00185EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:44 p.m.9 views

CVE-2026-0428

Insufficient parameter sanitization in TEE SOC Driver could allow an attacker to issue a malformed DRVSOCCMDIDSRIOVCOPYVFCHIPLETREGS to write invalid data to a remote Die, potentially resulting in unexpected behavior...

1.8CVSS5.5AI score0.00101EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:42 p.m.10 views

CVE-2025-29944

A buffer overflow vulnerability within AMD Sensor Fusion Hub Driver can allow a local attacker to write out of bounds, potentially resulting in denial of service or crash...

6.8CVSS5.8AI score0.00101EPSS
Exploits0References1
Rows per page
Query Builder