Lucene search
K

161 matches found

NVD
NVD
added yesterday7 views

CVE-2026-9492

The MBStorage DRAM lighting control module within Gigabyte Control Center GCC developed by GIGABYTE Technology has an Improper Access Control vulnerability. Authenticated local attackers can send specific IOCTL commands through the driver MyPortIOx64.sys bundled with the module, thereby arbitrari...

8.5CVSS0.00109EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/06/29 8:48 a.m.8 views

CVE-2026-53320

A flaw was found in the Linux kernel's nilfs2 filesystem. A local attacker could exploit this vulnerability by sending a specially crafted input/output control ioctl request to the nilfsioctlmarkblocksdirty function. By providing a zero block number, the attacker can bypass a critical dead block...

5.5CVSS5.7AI score0.00121EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/28 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the LPGETSTATUS ioctl command in the usblp driver. This command fails to initialize heap memory,...

5.8AI score0.00128EPSS
Exploits0References5
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Linux 5.10, Linux

In the Linux kernel, the following vulnerability has been resolved: loop: Overflow check during loop configuration The user space can configure a loop using an ioctl call. In this process, a configuration of type loopconfig is passed see the loioctl case on line 1550 of drivers/block/loop.c. This...

5.5CVSS6AI score0.0021EPSS
Exploits0References2
OSV
OSV
added 2026/05/18 8:12 p.m.8 views

GHSA-FJQ3-FFVR-VM46 OpenTelemetry eBPF Instrumentation: Java TLS ioctl kprobe allows kernel memory disclosure

Summary The Java TLS ioctl probe reads user-controlled ioctl pointers with bpfproberead instead of bpfprobereaduser. An instrumented local process can therefore point OBI at kernel memory and cause that memory to be copied into telemetry. Details The vulnerable path is in...

3.8CVSS5.8AI score0.00174EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/05/08 2:0 a.m.66 views

CVE-2026-6737

An Exposed IOCTL with Insufficient Access Control vulnerability in AsusPTPFilter allows a local user to bypass driver security mechanisms and obtain restricted touchpad information or render the touchpad unusable via crafted IOCTL requests.Refer to the ' Security Update for ASUS Precision...

2CVSS0.00092EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/04/17 12:0 a.m.5 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007459)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007459 advisory. In the Linux kernel, the following vulnerability has been resolved: video: fbdev: i740fb: Check the argument of i740calcvclk Since the user can control the argument...

5.5CVSS6.1AI score0.00208EPSS
Exploits0References4
EUVD
EUVD
added 2026/04/08 9:31 a.m.9 views

EUVD-2026-20111

An exposed IOCTL with an insufficient access control vulnerability has been identified in the utility, MxGeneralIo, for Moxa’s industrial x86 computers. The affected utility, MxGeneralIo, exposes IOCTL methods that permit direct read and write access to MSR and system memory. A local attacker wit...

7CVSS5.8AI score0.00299EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/03/26 3:13 p.m.5 views

CVE-2025-15037

An Incorrect Permission Assignment vulnerability exists in the ASUS Business System Control Interface driver. This vulnerability can be triggered by an unprivileged local user sending a specially crafted IOCTL request, potentially leading to unauthorized access to sensitive hardware resources and...

6.8CVSS5.8AI score0.00099EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001652)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001652 advisory. The vmwsurfacedefineioctl function in drivers/gpu/drm/vmwgfx/vmwgfxsurface.c in the Linux kernel through 4.10.5 does not check for a zero value of certain levels dat...

5.5CVSS6.5AI score0.00366EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.7 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000698)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000698 advisory. Stack-based buffer overflow in the ttusbdecfedvbsdiseqcsendmastercmd function in drivers/media/usb/ttusb-dec/ttusbdecfe.c in the Linux kernel before 3.17.4 allows...

6.1CVSS7AI score0.00638EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003710)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003710 advisory. An issue was discovered in the fdlockedioctl function in drivers/block/floppy.c in the Linux kernel through 4.15.7. The floppy driver will copy a kernel pointer to...

5.5CVSS6.5AI score0.00694EPSS
Exploits1References16
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000630)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000630 advisory. Array index error in the tcmvhostmaketpg function in drivers/vhost/scsi.c in the Linux kernel before 4.0 might allow guest OS users to cause a denial of service memo...

7.2CVSS7.4AI score0.00589EPSS
Exploits1References13
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.6 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002443)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002443 advisory. The aacsendrawsrb function in drivers/scsi/aacraid/commctrl.c in the Linux kernel through 3.12.1 does not properly validate a certain size value, which allows local...

4.7CVSS7.2AI score0.00602EPSS
Exploits1References20
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.4 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003191)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003191 advisory. The vmwsurfacedefineioctl function in drivers/gpu/drm/vmwgfx/vmwgfxsurface.c in the Linux kernel through 4.10.6 does not validate addition of certain levels data,...

7.8CVSS6.5AI score0.0038EPSS
Exploits0References8
EUVD
EUVD
added 2026/01/15 12:0 a.m.6 views

EUVD-2026-2755

A local information disclosure vulnerability exists in the Ludashi driver before 5.1025 due to a lack of access control in the IOCTL handler. This driver exposes a device interface accessible to a normal user and handles attacker-controlled structures containing the lower 4GB of physical addresse...

7.3CVSS5.3AI score0.0014EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.4 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002289)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002289 advisory. Buffer overflow in the qethsnmpcommand function in drivers/s390/net/qethcoremain.c in the Linux kernel through 3.12.1 allows local users to cause a denial of service...

6.9CVSS7.3AI score0.00574EPSS
Exploits1References11
CVE
CVE
added 2026/01/13 9:19 p.m.62 views

CVE-2025-68947

NSecsoft NSecKrnl is a Windows driver that permits a local, authenticated attacker to terminate processes owned by other users (including SYSTEM and Protected Processes) by sending crafted IOCTL requests. Multiple sources (including Reynolds ransomware and CVE records) describe this as a BYOVD an...

5.7CVSS6.3AI score0.00116EPSS
In wildExploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-2577

Malware in sbrugna...

6.3CVSS6.9AI score0.00363EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-5664

Malware in sbrugna...

7.8CVSS7.6AI score0.01821EPSS
Exploits6References4
Rows per page
Query Builder