73 matches found
CVE-2026-23213
In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: Disable MMIO access during SMU Mode 1 reset During Mode 1 reset, the ASIC undergoes a reset cycle and becomes temporarily inaccessible via PCIe. Any attempt to access MMIO registers during this window e.g., from...
CVE-2023-31323
Type confusion in the AMD Secure Processor ASP could allow an attacker to pass a malformed argument to the External Global Memory Interconnect Trusted Agent XGMI TA leading to a memory safety violation potentially resulting in loss of confidentiality, integrity, or availability...
CVE-2023-31323
Type confusion in the AMD Secure Processor ASP could allow an attacker to pass a malformed argument to the External Global Memory Interconnect Trusted Agent XGMI TA leading to a memory safety violation potentially resulting in loss of confidentiality, integrity, or availability...
CVE-2023-31324
A Time-of-check time-of-use TOCTOU race condition in the AMD Secure Processor ASP could allow an attacker to modify External Global Memory Interconnect Trusted Agent XGMI TA commands as they are processed potentially resulting in loss of confidentiality, integrity, or availability...
CVE-2023-31324
A Time-of-check time-of-use TOCTOU race condition in the AMD Secure Processor ASP could allow an attacker to modify External Global Memory Interconnect Trusted Agent XGMI TA commands as they are processed potentially resulting in loss of confidentiality, integrity, or availability...
CVE-2026-21219 Inbox COM Objects (Global Memory) Remote Code Execution Vulnerability
...
CVE-2026-21219
CVE-2026-21219 describes a Use-after-Free in Inbox COM Objects (Global Memory) that allows an unauthenticated attacker to achieve Remote Code Execution by local access. Affected software is the Inbox COM Objects component of Windows apps (notably those handling mail via Outlook/Exchange); the iss...
CVE-2026-21219 Inbox COM Objects (Global Memory) Remote Code Execution Vulnerability
...
Inbox COM Objects (Global Memory) Remote Code Execution Vulnerability
Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally...
Microsoft Windows SDK < 10.0.26100.7463 Inbox COM Objects (Global Memory) RCE (January 2026)
The version of Microsoft Windows SDK installed on the remote host is prior to 10.0.26100.7463. It is, therefore, affected by a remote code execution vulnerability: - Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally. CVE-2026-21219 Note that Nessus has no...
CVE-2025-58738
CVE-2025-58738 is a local-execution vulnerability caused by a use-after-free in Inbox COM Objects. Reported impact: unauthorized code execution on the affected system with local attacker access. Documented impact aligns with high-severity CVSS metrics (AV: Local, AC: High, PR: None, UI: Required;...
CVE-2025-58738 Inbox COM Objects (Global Memory) Remote Code Execution Vulnerability
...
CVE-2025-58738 Inbox COM Objects (Global Memory) Remote Code Execution Vulnerability
...
CVE-2025-58736 Inbox COM Objects (Global Memory) Remote Code Execution Vulnerability
...
CVE-2025-58736 Inbox COM Objects (Global Memory) Remote Code Execution Vulnerability
...
CVE-2025-58736
CVE-2025-58736 is a use-after-free in Windows Inbox COM Objects that enables local code execution by an attacker who can interact with the affected system. CVSS v3.1: AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H; Privileges: None, User Interaction: Required, with high impact on confidentiality/ integrity/...
CVE-2025-58734 Inbox COM Objects (Global Memory) Remote Code Execution Vulnerability
...
CVE-2025-58733 Inbox COM Objects (Global Memory) Remote Code Execution Vulnerability
...
CVE-2025-58733
CVE-2025-58733 corresponds to a use-after-free in Inbox COM Objects on Windows that enables local code execution. Connected sources confirm Inbox COM Objects as the vulnerable component and describe the impact as arbitrary code execution by a local attacker. Public advisories from Microsoft and C...
CVE-2025-58734
CVE-2025-58734 is described as a use-after-free vulnerability in the Windows Inbox COM Objects that can allow a local attacker to achieve arbitrary code execution. The connected document from CNVD confirms that Inbox COM Objects contain a code execution vulnerability, supporting the CVE’s impact ...