Lucene search
K

23 matches found

VulnCheck KEV
VulnCheck KEV
added 2026/01/29 12:0 a.m.11 views

VulnCheck KEV: CVE-2025-61155

The GameDriverX64.sys kernel-mode anti-cheat driver v7.23.4.7 and earlier contains an access control vulnerability in one of its IOCTL handlers. A user-mode process can open a handle to the driver device and send specially crafted IOCTL requests. These requests are executed in kernel-mode context...

5.5CVSS5.9AI score0.00275EPSS
In wildExploits2References2
Tenable Nessus
Tenable Nessus
added 2026/01/14 12:0 a.m.3 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001575)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001575 advisory. The vmwgbsurfacedefineioctl function in drivers/gpu/drm/vmwgfx/vmwgfxsurface.c in the Linux kernel through 4.10.7 does not validate certain levels data, which allows...

5.5CVSS6.5AI score0.00378EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-2433

Malware in sbrugna...

6.3CVSS6.9AI score0.00363EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-17993

Malware in sbrugna...

7.8CVSS7.9AI score0.00504EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-5847

Malware in sbrugna...

7.8CVSS7.6AI score0.01835EPSS
Exploits5References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2017-5588

Malware in sbrugna...

7.8CVSS7.6AI score0.01821EPSS
Exploits6References4
OSV
OSV
added 2023/08/31 10:31 p.m.10 views

USN-6331-1 linux-azure vulnerabilities

It was discovered that the netlink implementation in the Linux kernel did not properly validate policies when parsing attributes in some situations. An attacker could use this to cause a denial of service infinite recursion. CVE-2020-36691 Billy Jheng Bing Jhong discovered that the CIFS network...

7.8CVSS7AI score0.05794EPSS
Exploits4References22
SUSE CVE
SUSE CVE
added 2023/02/15 5:57 a.m.2 views

SUSE CVE-2010-3078

The xfsiocfsgetxattr function in fs/xfs/linux-2.6/xfsioctl.c in the Linux kernel before 2.6.36-rc4 does not initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via an ioctl call...

5.5CVSS6AI score0.00407EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2022/08/09 4:59 p.m.4 views

kernel: information leak in scsi_ioctl()

A kernel information leak flaw was identified in the scsiioctl function in drivers/scsi/scsiioctl.c in the Linux kernel. This flaw allows a local attacker with a special user privilege CAPSYSADMIN or CAPSYSRAWIO to create issues with confidentiality...

4.9CVSS6.7AI score0.00416EPSS
Exploits0References5
Amazon
Amazon
added 2022/06/09 12:0 a.m.13 views

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: dm: fix mempool NULL pointer race when completing IO CVE-2021-47435 A kernel information leak flaw was identified in the scsiioctl function in drivers/scsi/scsiioctl.c in the Linux kernel. This flaw allows a local...

7.8CVSS5.6AI score0.01027EPSS
Exploits7
Amazon
Amazon
added 2022/01/28 12:0 a.m.2 views

Important: kernel

Issue Overview: A use-after-free flaw was found in kernel/trace/ringbuffer.c in Linux kernel. There was a race problem in traceopen and resize of cpu buffer running parallely on different cpus, may cause a denial of service problem DOS. This flaw could even allow a local attacker with special use...

7.8CVSS6.6AI score0.05095EPSS
Exploits1
OSV
OSV
added 2021/09/08 11:38 p.m.11 views

USN-5070-1 linux, linux-aws, linux-aws-5.11, linux-azure, linux-azure-5.11, linux-gcp, linux-hwe-5.11, linux-kvm, linux-oracle, linux-oracle-5.11, linux-raspi vulnerabilities

Maxim Levitsky and Paolo Bonzini discovered that the KVM hypervisor implementation for AMD processors in the Linux kernel allowed a guest VM to disable restrictions on VMLOAD/VMSAVE in a nested guest. An attacker in a guest VM could use this to read or write portions of the host's physical memory...

8.8CVSS7.1AI score0.03354EPSS
Exploits5References11
RedHat Linux
RedHat Linux
added 2020/07/07 10:4 a.m.6 views

kernel: denial of service via ioctl call in network tun handling

A flaw was found in the Linux kernel's implementation of networking tunnel device ioctl. A local attacker can cause a denial of service NULL pointer dereference and panic via an ioctl TUNSETIFF call with a dev name containing a / character...

5.5CVSS6.8AI score0.00654EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2020/03/31 8:33 p.m.7 views

kernel: denial of service via ioctl call in network tun handling

A flaw was found in the Linux kernel's implementation of networking tunnel device ioctl. A local attacker can cause a denial of service NULL pointer dereference and panic via an ioctl TUNSETIFF call with a dev name containing a / character...

5.5CVSS6.8AI score0.00654EPSS
Exploits1References4
OSV
OSV
added 2020/03/23 6:15 p.m.4 views

CVE-2020-8875

This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.2-47123. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

8.8CVSS6AI score
Exploits0References1
OSV
OSV
added 2020/03/23 6:15 p.m.4 views

CVE-2020-8876

This vulnerability allows local attackers to disclose information on affected installations of Parallels Desktop 15.1.2-47123. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

5.5CVSS6.1AI score
Exploits0References1
Prion
Prion
added 2018/05/25 3:29 p.m.16 views

Privilege escalation

A buffer overflow privilege escalation vulnerability in Trend Micro Maximum Security Consumer 2018 could allow a local attacker to escalate privileges on vulnerable installations due to a flaw within processing of IOCTL 0x222060 by the tmnciesc.sys driver. An attacker must first obtain the abilit...

7.2CVSS8.1AI score0.00504EPSS
Exploits0References2Affected Software4
RedHat Linux
RedHat Linux
added 2016/06/27 10:2 a.m.7 views

kernel: infiniband: Unprivileged process can overwrite kernel memory using rdma_ucm.ko

A flaw was found in the way certain interfaces of the Linux kernel's Infiniband subsystem used write as bi-directional ioctl replacement, which could lead to insufficient memory security checks when being invoked using the splice system call. A local unprivileged user on a system with either...

7.8CVSS6.8AI score0.00483EPSS
Exploits0References4
OSV
OSV
added 2015/12/28 11:59 a.m.2 views

DEBIAN-CVE-2015-7885

The dgncmgmtioctl function in drivers/staging/dgnc/dgncmgmt.c in the Linux kernel through 4.3.3 does not initialize a certain structure member, which allows local users to obtain sensitive information from kernel memory via a crafted application...

2.3CVSS5.2AI score0.00443EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2014/06/24 3:58 p.m.5 views

kernel: block: floppy: privilege escalation via FDRAWCMD floppy ioctl command

A flaw was found in the way the Linux kernel's floppy driver handled user space provided data in certain error code paths while processing FDRAWCMD IOCTL commands. A local user with write access to /dev/fdX could use this flaw to free using the kfree function arbitrary kernel memory. CVE-2014-173...

7.2CVSS6.5AI score0.00524EPSS
Exploits0References4
Rows per page
Query Builder