Lucene search
K

18 matches found

GithubExploit
GithubExploit
added 2026/02/13 10:43 a.m.243 views

Exploit for Improper Privilege Management in Patriotmemory Viper_Rgb_Firmware

GenericDrv amigendrv64.sys - Proof of Concept Overview...

7.1CVSS5.6AI score0.00416EPSS
Exploits1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2010-0329

Malware in sbrugna...

6.5CVSS6AI score0.02416EPSS
Exploits0References14
Tenable Nessus
Tenable Nessus
added 2025/08/09 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2020-15852

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the Linux kernel 5.5 through 5.7.9, as used in Xen through 4.13.x for x86 PV guests. An attacker may be granted the I/O port...

7.8CVSS6.9AI score0.00325EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2020/09/25 7:0 a.m.5 views

The x86 emulator in KVM 83 does not use the Current Privilege Level (CPL) and I/O Privilege Level (IOPL) in determining the memory access available to CPL3 code which allows guest OS users to cause a denial of service (guest OS crash) or gain privileges on the guest OS by leveraging access to a (1) IO port or (2) MMIO region a related issue to CVE-2010-0306.

...

6.5CVSS7AI score0.02416EPSS
Exploits0
CNVD
CNVD
added 2020/07/21 12:0 a.m.2 views

Xen Linux kernel privilege control vulnerability

Linux kernel is the kernel used by Linux, an open source operating system released by the Linux Foundation in the U.S. Xen is an open source virtual machine monitor product from the University of Cambridge, UK. The product enables different and incompatible operating systems to run on the same...

7.8CVSS6.3AI score0.00325EPSS
Exploits0References1
OSV
OSV
added 2020/04/29 2:15 p.m.4 views

CVE-2020-12446

The ene.sys driver in G.SKILL Trident Z Lighting Control through 1.00.08 exposes mapping and un-mapping of physical memory, reading and writing to Model Specific Register MSR registers, and input from and output to I/O ports to local non-privileged users. This leads to privilege escalation to NT...

7.8CVSS7.1AI score0.00502EPSS
Exploits1References1
OSV
OSV
added 2018/12/26 9:29 p.m.5 views

CVE-2018-18536

The GLCKIo and Asusgio low-level drivers in ASUS Aura Sync v1.07.22 and earlier expose functionality to read/write data from/to IO ports. This could be leveraged in a number of ways to ultimately run code with elevated privileges...

7.8CVSS5.8AI score
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2018/12/21 12:0 a.m.34 views

CVE-2018-19322

The GPCIDrv and GDrv low-level drivers in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, and OC GURU II v2.08 expose functionality to read/write data from/to IO ports. This could be leveraged in a number of ways to ultimately run cod...

7.8CVSS3.3AI score0.01872EPSS
In wildExploits2References6
OSV
OSV
added 2018/10/30 6:29 p.m.6 views

CVE-2018-10712

The AsrDrv101.sys and AsrDrv102.sys low-level drivers in ASRock RGBLED before v1.0.35.1, A-Tuning before v3.0.210, F-Stream before v3.0.210, and RestartToUEFI before v1.0.6.2 expose functionality to read/write data from/to IO ports. This could be leveraged in a number of ways to ultimately run co...

7.8CVSS5.8AI score0.01346EPSS
Exploits5References2
RedHat Linux
RedHat Linux
added 2016/09/27 4:1 p.m.18 views

qemu: incorrect banked access bounds checking in vga module

An out-of-bounds read/write access flaw was found in the way QEMU's VGA emulation with VESA BIOS Extensions VBE support performed read/write operations using I/O port methods. A privileged guest user could use this flaw to execute arbitrary code on the host with the privileges of the host's QEMU...

8.8CVSS7.7AI score0.00916EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2016/05/10 6:43 p.m.4 views

kernel: kvm: reporting emulation failures to userspace

It was found that reporting emulation failures to user space could lead to either a local CVE-2014-7842 or a L2-L1 CVE-2010-5313 denial of service. In the case of a local denial of service, an attacker must have access to the MMIO area or be able to access an I/O port. Please note that on certain...

4.9CVSS6.6AI score0.00325EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2016/05/10 4:48 a.m.31 views

qemu: incorrect banked access bounds checking in vga module

An out-of-bounds read/write access flaw was found in the way QEMU's VGA emulation with VESA BIOS Extensions VBE support performed read/write operations using I/O port methods. A privileged guest user could use this flaw to execute arbitrary code on the host with the privileges of the host's QEMU...

8.8CVSS7.7AI score0.00916EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2016/05/10 4:19 a.m.8 views

qemu: incorrect banked access bounds checking in vga module

An out-of-bounds read/write access flaw was found in the way QEMU's VGA emulation with VESA BIOS Extensions VBE support performed read/write operations using I/O port methods. A privileged guest user could use this flaw to execute arbitrary code on the host with the privileges of the host's QEMU...

8.8CVSS7.7AI score0.00916EPSS
Exploits0References4
OSV
OSV
added 2016/04/12 4:59 p.m.3 views

DEBIAN-CVE-2016-3157

The switchto function in arch/x86/kernel/process64.c in the Linux kernel does not properly context-switch IOPL on 64-bit PV Xen guests, which allows local guest OS users to gain privileges, cause a denial of service guest OS crash, or obtain sensitive information by leveraging I/O port access...

7.8CVSS7.8AI score0.00513EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2010/03/01 7:23 p.m.1 views

kvm: emulator privilege escalation segment selector check

The x86 emulator in KVM 83, when a guest is configured for Symmetric Multiprocessing SMP, does not properly restrict writing of segment selectors to segment registers, which might allow guest OS users to cause a denial of service guest OS crash or gain privileges on the guest OS by leveraging...

4.4CVSS5.8AI score0.0035EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2010/02/09 3:23 p.m.3 views

kvm: emulator privilege escalation IOPL/CPL level check

The x86 emulator in KVM 83, when a guest is configured for Symmetric Multiprocessing SMP, does not use the Current Privilege Level CPL and I/O Privilege Level IOPL to restrict instruction execution, which allows guest OS users to cause a denial of service guest OS crash or gain privileges on the...

4.1CVSS5.8AI score0.00382EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2010/02/09 10:1 a.m.5 views

kvm: cat /dev/port in guest cause the host hang

The pitioportread function in the Programmable Interval Timer PIT emulation in i8254.c in KVM 83 does not properly use the pitstate data structure, which allows guest OS users to cause a denial of service host OS crash or hang by attempting to read the /dev/port file...

6.8CVSS5.8AI score0.02718EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2010/02/09 10:1 a.m.5 views

kvm: emulator privilege escalation IOPL/CPL level check

The x86 emulator in KVM 83, when a guest is configured for Symmetric Multiprocessing SMP, does not use the Current Privilege Level CPL and I/O Privilege Level IOPL to restrict instruction execution, which allows guest OS users to cause a denial of service guest OS crash or gain privileges on the...

4.1CVSS5.8AI score0.00382EPSS
Exploits0References4
Rows per page
Query Builder