18625 matches found
kernel: drm/gem: Fix inconsistent plane dimension calculation in drm_gem_fb_init_with_funcs()
A flaw was found in the Linux kernel's Direct Rendering Manager DRM Graphics Execution Manager GEM component. This vulnerability arises from an inconsistent calculation of plane dimensions, which can lead to incorrect memory allocation checks. A local attacker could exploit this by creating a...
CVE-2026-13030
An uninitialized use flaw was found in the GPU component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=522840723...
CVE-2026-56398
Open WebUI before 0.9.5 contains a stored cross-site scripting vulnerability in the OAuth authentication flow where the picture claim URL MIME type is inferred from file extension rather than Content-Type header, allowing SVG files to bypass the profile image validator and be stored as data URIs...
WordPress Mapplic <= 6.1 / Mapplic Lite <= 1.0 - Authenticated Stored XSS via SVG File Upload
The Mapplic and Mapplic Lite plugins for WordPress are vulnerable to Stored Cross-Site Scripting via arbitrary URL injection in versions up to and including 6.1 and 1.0 respectively. Authenticated users with author-level permissions can inject arbitrary remote URLs for SVG map files. When a user...
CVE-2026-24271
NVIDIA TensorRT-LLM contains a vulnerability in the OpenAI-compatible inference API, where an attacker could cause allocation of GPU resources without limits or throttling. A successful exploit of this vulnerability might lead to denial of service...
firefox: thunderbird: Denial-of-service in the Graphics: ImageLib component
A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Denial-of-service in the Graphics: ImageLib component...
firefox: thunderbird: Privilege escalation in the Graphics: WebRender component
A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Privilege escalation in the Graphics: WebRender component...
firefox: thunderbird: Incorrect boundary conditions in the Graphics: CanvasWebGL component
A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Incorrect boundary conditions in the Graphics: CanvasWebGL component...
CVE-2026-56176
Out-of-bounds read in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally...
CVE-2026-50483
Exposure of sensitive information to an unauthorized actor in Microsoft Graphics Component allows an authorized attacker to disclose information locally...
CVE-2026-50387
Stack-based buffer overflow in Windows GDI allows an authorized attacker to elevate privileges locally...
CVE-2026-58609
Out-of-bounds read in Microsoft Graphics Component allows an unauthorized attacker to execute code locally...
CVE-2026-50296
Use after free in Graphics Kernel allows an authorized attacker to elevate privileges locally...
CVE-2026-58629 DirectX Graphics Kernel Elevation of Privilege Vulnerability
...
CVE-2026-58629
CVE-2026-58629 is a Windows DirectX vulnerability described as a use-after-free in the DirectX Graphics Kernel that allows a locally authenticated attacker to elevate privileges. The NVD entry notes a local attack vector with high impact (C/H/I/A all high) and the CVSSv3.1 score of 7.0 (Local, Pr...
CVE-2026-56644 DirectX Graphics Kernel Elevation of Privilege Vulnerability
...
CVE-2026-56644
CVE-2026-56644 is a Windows Kernel elevation-of-privilege vulnerability described as a use-after-free in the DirectX Graphics Kernel. Exploitation would allow a local, authenticated attacker to escalate privileges. Public references indicate Microsoft has released updates (MSRC pages and related ...
CVE-2026-56643
CVE-2026-56643 is a DirectX Graphics Kernel elevation of privilege vulnerability tracked by Microsoft. It stems from a use-after-free in the Windows Kernel’s DirectX Graphics Kernel component, enabling a local attacker with normal privileges to escalate to higher privileges. The vulnerability is ...
CVE-2026-56643 DirectX Graphics Kernel Elevation of Privilege Vulnerability
...
CVE-2026-50493 DirectX Graphics Kernel Elevation of Privilege Vulnerability
...