Lucene search
K

237 matches found

Debian CVE
Debian CVE
added 2024/05/17 1:23 p.m.40 views

CVE-2024-35801

In the Linux kernel, the following vulnerability has been resolved: x86/fpu: Keep xfdstate in sync with MSRIA32XFD Commit 672365477ae8 "x86/fpu: Update XFD state where required" and commit 8bf26758ca96 "x86/fpu: Add XFD state to fpstate" introduced a per CPU variable xfdstate to keep the MSRIA32X...

7.8CVSS7.2AI score0.00233EPSS
Exploits0
GoogleProjectZero
GoogleProjectZero
added 2024/04/18 12:0 a.m.98 views

The Windows Registry Adventure #1: Introduction and research results

Posted by Mateusz Jurczyk, Google Project Zero In the 20-month period between May 2022 and December 2023, I thoroughly audited the Windows Registry in search of local privilege escalation bugs. It all started unexpectedly: I was in the process of developing a coverage-based Windows kernel fuzzer...

7.8CVSS9.2AI score0.08698EPSS
Exploits4
OSV
OSV
added 2024/02/13 8:15 p.m.5 views

CVE-2021-46757

Insufficient checking of memory buffer in ASP Secure OS may allow an attacker with a malicious TA to read/write to the ASP Secure OS kernel virtual address space potentially leading to privilege escalation...

7.8CVSS6AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/01/25 12:0 a.m.63 views

RHEL 8 : kernel (RHSA-2024:0412)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:0412 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: bpf: Incorrect verifier prunin...

10CVSS7.6AI score0.09141EPSS
Exploits26References103
Positive Technologies
Positive Technologies
added 2023/11/28 12:0 a.m.7 views

PT-2023-9585 · Qualcomm · Qualcomm Snapdragon Auto

Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon Auto versions prior to WSA8835 Description: The issue is related to memory corruption that occurs when sending the persist buffer command packet from the user-space to the kernel space through the IOCTL call. This can...

6.8CVSS8.4AI score0.0011EPSS
Exploits0References11
Wiz blog
Wiz blog
added 2023/10/24 5:52 p.m.15 views

Linux rootkits explained – Part 2: Loadable kernel modules

Part 2 dives into the world of LKMs Loadable Kernel Modules and kernel-space rootkits to explore what LKMs are, how attackers abuse them, and how to detect them...

6.9AI score
Exploits0
Code423n4
Code423n4
added 2023/03/19 12:0 a.m.7 views

function _nonSystemDeployOnAddress() should try another nonces when getNewAddressCreate() result is in kernel space otherwise some logics would be broken

Lines of code Vulnerability details Impact Function createAccount Deploys a contract account with similar address derivation rules to the EVM's CREATE opcode. the deployed contract address is calculated based on sender deployed nonce. code uses nonSystemDeployOnAddress to deploy the contract to n...

6.7AI score
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 6:48 p.m.60 views

K25835344: Linux kernel vulnerability CVE-2018-8781

Security Advisory Description The udlfbmmap function in drivers/gpu/drm/udl/udlfb.c at the Linux kernel version 3.4 and up to and including 4.15 has an integer-overflow vulnerability allowing local users with access to the udldrmfb driver to obtain full read and write permissions on kernel physic...

7.8CVSS6.4AI score0.00502EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 6:47 p.m.36 views

K35135935: Side-channel processor vulnerability CVE-2018-9056 (BranchScope)

Security Advisory Description Systems with microprocessors utilizing speculative execution may allow unauthorized disclosure of information to an attacker with local user access via a side-channel attack on the directional branch predictor, as demonstrated by a pattern history table PHT, aka...

5.6CVSS5.4AI score0.00696EPSS
Exploits1
SUSE CVE
SUSE CVE
added 2023/02/15 6:4 a.m.3 views

SUSE CVE-2009-1185

udev before 1.4.1 does not verify whether a NETLINK message originates from kernel space, which allows local users to gain privileges by sending a NETLINK message from user space...

7.2CVSS6.9AI score0.81528EPSS
Exploits12References8
OSV
OSV
added 2022/10/14 4:15 p.m.2 views

CVE-2022-39011

The HISP module has a vulnerability of bypassing the check of the data transferred in the kernel space.Successful exploitation of this vulnerability may cause unauthorized access to the HISP module...

7.5CVSS5.8AI score0.00426EPSS
Exploits0References2
NVD
NVD
added 2022/10/14 4:15 p.m.31 views

CVE-2022-39011

The HISP module has a vulnerability of bypassing the check of the data transferred in the kernel space.Successful exploitation of this vulnerability may cause unauthorized access to the HISP module...

7.5CVSS0.00426EPSS
Exploits0References2
OSV
OSV
added 2022/10/14 4:15 p.m.4 views

CVE-2022-38998

The HISP module has a vulnerability of not verifying the data transferred in the kernel space.Successful exploitation of this vulnerability will cause out-of-bounds read, which affects data confidentiality...

7.5CVSS5.8AI score0.00422EPSS
Exploits0References2
NVD
NVD
added 2022/10/14 4:15 p.m.34 views

CVE-2022-38998

The HISP module has a vulnerability of not verifying the data transferred in the kernel space.Successful exploitation of this vulnerability will cause out-of-bounds read, which affects data confidentiality...

7.5CVSS0.00422EPSS
Exploits0References2
OSV
OSV
added 2022/10/14 4:15 p.m.3 views

CVE-2022-38986

The HIPP module has a vulnerability of bypassing the check of the data transferred in the kernel space.Successful exploitation of this vulnerability may cause out-of-bounds access to the HIPP module and page table tampering, affecting device confidentiality and availability...

9.1CVSS5.8AI score0.00521EPSS
Exploits0References2
NVD
NVD
added 2022/10/14 4:15 p.m.36 views

CVE-2022-38986

The HIPP module has a vulnerability of bypassing the check of the data transferred in the kernel space.Successful exploitation of this vulnerability may cause out-of-bounds access to the HIPP module and page table tampering, affecting device confidentiality and availability...

9.1CVSS0.00521EPSS
Exploits0References2
OSV
OSV
added 2022/10/14 4:15 p.m.3 views

CVE-2022-38984

The HIPP module has a vulnerability of not verifying the data transferred in the kernel space.Successful exploitation of this vulnerability will cause out-of-bounds read, which affects data confidentiality...

7.5CVSS5.8AI score0.00422EPSS
Exploits0References2
NVD
NVD
added 2022/10/14 4:15 p.m.33 views

CVE-2022-38984

The HIPP module has a vulnerability of not verifying the data transferred in the kernel space.Successful exploitation of this vulnerability will cause out-of-bounds read, which affects data confidentiality...

7.5CVSS0.00422EPSS
Exploits0References2
Prion
Prion
added 2022/10/14 4:15 p.m.22 views

Out-of-bounds

The HIPP module has a vulnerability of not verifying the data transferred in the kernel space.Successful exploitation of this vulnerability will cause out-of-bounds read, which affects data confidentiality...

5CVSS7.4AI score0.00422EPSS
Exploits0References2Affected Software2
Prion
Prion
added 2022/10/14 4:15 p.m.15 views

Out-of-bounds

The HISP module has a vulnerability of not verifying the data transferred in the kernel space.Successful exploitation of this vulnerability will cause out-of-bounds read, which affects data confidentiality...

5CVSS7.4AI score0.00422EPSS
Exploits0References2Affected Software2
Rows per page
Query Builder