333 matches found
EUVD-2025-209609
An issue in the component DirectIo64.sys of PassMark BurnInTest v11.0 Build 1011, OSForensics v11.1 Build 1007, and PerformanceTest v11.1 Build 1004 allows attackers to access kernel memory and escalate privileges via a crafted IOCTL 0x8011E044 call...
PT-2026-36532
Name of the Vulnerable Software and Affected Versions BurnInTest version 11.0 Build 1011 OSForensics version 11.1 Build 1007 PerformanceTest version 11.1 Build 1004 Description A flaw in the DirectIo64.sys component allows attackers to access kernel memory and escalate privileges. This is achieve...
CVE-2025-52347
An issue in the component DirectIo64.sys of PassMark BurnInTest v11.0 Build 1011, OSForensics v11.1 Build 1007, and PerformanceTest v11.1 Build 1004 allows attackers to access kernel memory and escalate privileges via a crafted IOCTL 0x8011E044 call...
Linux kernel 安全漏洞
The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from an integer underflow under the stmmac chained mode. This vulnerability could lead to arbitrary...
CVE-2026-23346 arm64: io: Extract user memory type in ioremap_prot()
In the Linux kernel, the following vulnerability has been resolved: arm64: io: Extract user memory type in ioremapprot The only caller of ioremapprot outside of the generic ioremap implementation is genericaccessphys, which passes a 'pgprott' value determined from the user mapping of the target...
Linux Distros Unpatched Vulnerability : CVE-2026-23346
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - arm64: io: Extract user memory type in ioremapprot The only caller of ioremapprot outside of the generic ioremap implementation is genericaccessphys, which pass...
UBUNTU-CVE-2026-23236
In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: properly copy ioctl memory to kernelspace The UFXIOCTLREPORTDAMAGE ioctl does not properly copy data from userspace to kernelspace, and instead directly references the memory, which can cause problems if invalid...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001565)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001565 advisory. In the Linux kernel through 5.13.7, an unprivileged BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attac...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001001)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001001 advisory. The sg implementation in the Linux kernel through 4.9 does not properly restrict write operations in situations where the KERNELDS option is set, which allows local...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001966)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001966 advisory. net/rds/sysctl.c in the Linux kernel before 3.19 uses an incorrect data type in a sysctl table, which allows local users to obtain potentially sensitive information...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002004)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002004 advisory. The 1 getuser and 2 putuser API functions in the Linux kernel before 3.5.5 on the v6k and v7 ARM platforms do not validate certain addresses, which allows attackers ...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002358)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002358 advisory. drivers/hid/hid-logitech-dj.c in the Human Interface Device HID subsystem in the Linux kernel through 3.11, when CONFIGHIDLOGITECHDJ is enabled, allows physically...
CVE-2005-1400
The i386getldt system call in FreeBSD 4.7 to 4.11 and 5.x to 5.4 allows local users to access sensitive kernel memory via arguments with negative or very large values...
CVE-1999-0295
Solaris sysdef command allows local users to read kernel memory, potentially leading to root privileges...
CVE-1999-0367
NetBSD netstat command allows local users to access kernel memory...
Exploit for CVE-2025-8061
CVE-2025-8061 Exploit Overview Proof-of-Concept exploit f...
OpenWRT < 24.10.4 Multiple Vulnerabilities
OpenWRT is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:openwrt:openwrt"; ifdescription...
Linux Distros Unpatched Vulnerability : CVE-2025-62525
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenWrt Project is a Linux operating system targeting embedded devices. Prior to version 24.10.4, local users could read and write arbitrary kernel memory using...
CVE-2025-63602
A vulnerability was discovered in Awesome Miner thru 11.2.4 that allows arbitrary read and write to kernel memory and MSRs such as LSTAR as an unprivileged user. This is due to the implementation of an insecure version of WinRing0 1.2.0.5, renamed to IntelliBreeze.Maintenance.Service.sys that lac...
CVE-2025-62525
OpenWrt Project is a Linux operating system targeting embedded devices. Prior to version 24.10.4, local users could read and write arbitrary kernel memory using the ioctls of the ltq-ptm driver which is used to drive the datapath of the DSL line. This only effects the lantiq target supporting...