67 matches found
EUVD-2018-5827
Malware in sbrugna...
EUVD-2016-9329
Malware in sbrugna...
EUVD-2021-12235
Malware in sbrugna...
EUVD-2018-11335
Malware in sbrugna...
CVE-2025-51060
An issue was discovered in CPUID cpuz.sys 1.0.5.4. An attacker can use DeviceIoControl with the unvalidated parameters 0x9C402440 and 0x9C402444 as IoControlCodes to perform RDMSR and WRMSR, respectively. Through this process, the attacker can modify MSRLSTAR and hook KiSystemCall64. Afterward,...
PT-2025-31967 · Cpuz.Sys · Cpuz.Sys
Name of the Vulnerable Software and Affected Versions: cpuz.sys version 1.0.5.4 Description: An attacker can use DeviceIoControl with unvalidated parameters 0x9C402440 and 0x9C402444 as IoControlCodes to perform RDMSR and WRMSR, respectively. This allows modification of MSR LSTAR and hooking of...
PSKernel-Primitives
PSKernel-Primitives Over time I'll add PowerShell helper functions to assist in kernel exploitation. Common PowerShell Exploit Constructs Create buffer powershell Byte buffer int/hex $Buff = Byte0x41255 + Byte0x420xff Buffer includes pointer Takes care of endianness, may need ".ToInt32" or...
CVE-2025-25180
Software installed and run as a non-privileged user may conduct improper GPU system calls to subvert GPU HW to write to arbitrary physical memory pages. Under certain circumstances this exploit could be used to corrupt data pages not allocated by the GPU driver but memory pages in use by the kern...
CVE-2025-6217
PEAK-System Driver PCANFDADDFILTERS Time-Of-Check Time-Of-Use Information Disclosure Vulnerability. This vulnerability allows local attackers to disclose sensitive information on affected installations of PEAK-System Driver. An attacker must first obtain the ability to execute low-privileged code...
CVE-2024-23697
In RGXCreateHWRTDataaux of rgxta3d.c, there is a possible arbitrary code execution due to a use after free. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation...
Linux Distros Unpatched Vulnerability : CVE-2023-4206
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A use-after-free vulnerability in the Linux kernel's net/sched: clsroute component can be exploited to achieve local privilege escalation. When route4change is...
Linux Distros Unpatched Vulnerability : CVE-2022-42432
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - This vulnerability allows local attackers to disclose sensitive information on affected installations of the Linux Kernel 6.0-rc2. An attacker must first obtain...
Linux Distros Unpatched Vulnerability : CVE-2020-10942
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel before 5.5.8, getrawsocket in drivers/vhost/net.c lacks validation of an skfamily field, which might allow attackers to trigger kernel stack...
CVE-2024-40651
In TBD of TBD, there is a possible use-after-free due to a logic error in the code. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2024-40651
CVE-2024-40651 describes a possible local escalation of privilege in the Android kernel stemming from a use-after-free caused by a logic error (exact component not disclosed in provided documents). The vulnerability, as described across multiple sources, can be exploited with local access and doe...
ASB-A-363029346
In TBD of TBD, there is a possible use-after-free due to a logic error in the code. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation...
ASB-A-337944529
In PVRSRVRGXKickTA3DKM of rgxta3d.c, there is a possible arbitrary code execution due to improper input validation. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation...
ASB-A-346640884
In DevmemXReservationPageAddress of devicememserver.c, there is a possible use-after-free due to improper casting. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation...
ASB-A-346635977
In TBD of TBD, there is a possible use-after-free due to a logic error in the code. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation...
ASB-A-350535746
In DevmemIntPFNotify of devicememserver.c, there is a possible use-after-free due to a race condition. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation...