Lucene search
+L

333 matches found

attackerkb
attackerkb
added yesterday3 views

CVE-2026-14961

Pegatron Tdelo64.sys exposes a privileged device interface, \.\TdeIo, that fails to properly restrict access to sensitive IOCTL functionality. The driver's IOCTL dispatcher does not validate caller privileges or verify user-supplied kernel memory addresses before performing memory operations. By...

6.2CVSS6.2AI score
Exploits1References2Affected Software1
euvd
euvd
added yesterday4 views

EUVD-2026-44731

Pegatron Tdelo64.sys exposes a privileged device interface, \.\TdeIo, that fails to properly restrict access to sensitive IOCTL functionality. The driver's IOCTL dispatcher does not validate caller privileges or verify user-supplied kernel memory addresses before performing memory operations. By...

6.2CVSS6.2AI score
Exploits1References1
cvelist
cvelist
added yesterday17 views

CVE-2026-14961 CVE-2026-14961

Pegatron Tdelo64.sys exposes a privileged device interface, \.\TdeIo, that fails to properly restrict access to sensitive IOCTL functionality. The driver's IOCTL dispatcher does not validate caller privileges or verify user-supplied kernel memory addresses before performing memory operations. By...

Exploits1References1
cert
cert
added yesterday5 views

Privilege escalation vulnerability via unprotected IOCTL interface in Pegatron Tdelo64.sys

Overview A privilege escalation vulnerability exists in the tdeio64.sys driver due to an unprotected input/output control IOCTL dispatch routine that fails to validate the origin and permissions of user-supplied requests. An unprivileged local attacker can abuse exposed IOCTL dispatch routines...

6.2CVSS6.2AI score
Exploits1
cve
cve
added 2 days ago6 views

CVE-2026-10669

Summary (CVE-2026-10669) : On Xtensa SoCs with CONFIG_XTENSA_MPU and CONFIG_USERSPACE, arch_buffer_validate() erroneously permits access when the buffer size rounds to a wrap of the 32-bit address space, bypassing MPU checks. This can let an unprivileged user-thread validate or copy memory it sho...

7.8CVSS6.1AI score0.00114EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2026/06/27 12:0 a.m.15 views

PT-2026-53063

Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description An issue exists where the audio buffer backing a mapping could be freed upon closing the device while the mapping remains valid. This allows the freed memory to ...

7CVSS6.1AI score0.00125EPSS
Exploits0References6
ptsecurity
ptsecurity
added 2026/06/26 12:0 a.m.9 views

PT-2026-52842

Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description Kernel software running within a Host VM can send improper commands to the GPU Firmware. This allows the firmware to perform memory read or write operations...

7.8CVSS5.8AI score0.00106EPSS
Exploits0References3
amd
amd
added 2026/06/09 12:0 a.m.20 views

AMD uProf Vulnerabilities

CVE Details Refer to Glossary for explanation of terms CVE| CVE Description| CVSS Score ---|---|--- CVE-2026-0466| Improper access control in AMD uProf may allow a local attacker with user privileges to write to the kernel-shared memory section, potentially resulting in crash or denial of service...

6.8CVSS5.4AI score0.001EPSS
Exploits0
redhatcve
redhatcve
added 2026/06/05 7:51 p.m.9 views

CVE-2025-52347

An issue in the component DirectIo64.sys of PassMark BurnInTest v11.0 Build 1011, OSForensics v11.1 Build 1007, and PerformanceTest v11.1 Build 1004 allows attackers to access kernel memory and escalate privileges via a crafted IOCTL 0x8011E044 call...

7.8CVSS5.4AI score0.00109EPSS
Exploits0References1
redhat
redhat
added 2026/06/04 10:49 a.m.16 views

kernel: iommu: disable SVA when CONFIG_X86 is set

A security vulnerability was found in the Linux kernel's IOMMU Shared Virtual Addressing SVA implementation on x86 architecture. When SVA is enabled, the IOMMU caches kernel page table entries. Since the kernel lacks a mechanism to notify the IOMMU when kernel page table pages are freed and...

7.8CVSS5.9AI score0.00145EPSS
Exploits0References5
susecve
susecve
added 2026/05/28 3:55 a.m.11 views

SUSE CVE-2026-45958

In the Linux kernel, the following vulnerability has been resolved: drm/exynos: vidi: fix to avoid directly dereferencing user pointer In vidiconnectionioctl, vidi-ediduser pointer is directly dereferenced in the kernel. This allows arbitrary kernel memory access from the user space, so instead o...

7.1CVSS5.9AI score0.00126EPSS
Exploits0References4
osv
osv
added 2026/05/27 2:17 p.m.10 views

UBUNTU-CVE-2026-45958

In the Linux kernel, the following vulnerability has been resolved: drm/exynos: vidi: fix to avoid directly dereferencing user pointer In vidiconnectionioctl, vidi-ediduser pointer is directly dereferenced in the kernel. This allows arbitrary kernel memory access from the user space, so instead o...

7.1CVSS5.9AI score0.00126EPSS
Exploits0References3
cnnvd
cnnvd
added 2026/05/27 12:0 a.m.12 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the exynos-drm driver’s viidiconnectionioctl function, which directly derefreshes user-space...

7.1CVSS5.9AI score0.00126EPSS
Exploits0References8
astralinux
astralinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: RISCV: Misaligned – Restricts user access to kernel memory. The rawcopyto,fromuser function does not call accessok, allowing userspace to access any virtual memory address...

3.3CVSS5.7AI score0.00183EPSS
Exploits0References2
astralinux
astralinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Linux 5.10, Linux

KGDB and KDB allow read and write access to kernel memory, and therefore should be restricted during lockdown. An attacker with access to a serial port could trigger the debugger, so it is important that the debugger respects the lockdown mode when/if it is triggered. CVSS 3.1 Base Score: 6.7...

6.7CVSS6.7AI score0.00612EPSS
Exploits0References2
cnnvd
cnnvd
added 2026/05/15 12:0 a.m.13 views

AMD Chipset 安全漏洞

The AMD Chipset is a series of chips developed by American semiconductor company AMD. The AMD Chipset contains security vulnerabilities; these vulnerabilities stem from the use of uninitialized resources, which may allow attackers to access uninitialized kernel memory, resulting in losses related...

6.9CVSS5.8AI score0.00104EPSS
Exploits0References1
cnnvd
cnnvd
added 2026/05/11 12:0 a.m.17 views

Apple多款产品 安全漏洞

Apple iOS, among others, are products of the American company Apple. Apple iOS is an operating system developed for mobile devices. Apple tvOS is an operating system for smart TVs. Apple watchOS is an operating system for smart watches. Several Apple products have security vulnerabilities; these...

6.2CVSS6AI score0.00166EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/05/08 5:3 p.m.12 views

CVE-2026-43450

A flaw was found in the Linux kernel's nfnetlinkcthelper component. This vulnerability, an out-of-bounds read, occurs in the nfnlcthelperdumptable function when a network connection tracking helper is removed during a dump operation, leading to a bypassed bounds check. A local attacker could...

7.1CVSS5.8AI score0.00132EPSS
Exploits0References4
nvd
nvd
added 2026/05/01 7:16 p.m.8 views

CVE-2025-52347

An issue in the component DirectIo64.sys of PassMark BurnInTest v11.0 Build 1011, OSForensics v11.1 Build 1007, and PerformanceTest v11.1 Build 1004 allows attackers to access kernel memory and escalate privileges via a crafted IOCTL 0x8011E044 call...

7.8CVSS0.00109EPSS
Exploits0References4
cnnvd
cnnvd
added 2026/05/01 12:0 a.m.12 views

PassMark多款产品 输入验证错误漏洞

PassMark Burnintest and others are products of PassMark Australia.PassMark Burnintest is a software that can be used to test the reliability and load testing of computers.PassMark OSForensics is a digital forensics analysis tool.PassMark PerformanceTest is a computer performance testing tool. An...

7.8CVSS5.8AI score0.00109EPSS
Exploits0References1
Rows per page
Query Builder