CVE-2019-10597

kernel writes to user passed address without any checks can lead to arbitrary memory write in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in IPQ6018, IPQ8074, MSM8996, MSM8996AU, Nicobar,...

CVE-2025-37947

In the Linux kernel, the following vulnerability has been resolved: ksmbd: prevent out-of-bounds stream writes by validating pos ksmbdvfsstreamwrite did not validate whether the write offset pos was within the bounds of the existing stream data length vlen. If pos was greater than or equal to vle...

kernel: vsock: Keep the binding until socket destruction

A flaw was found in the Linux kernel's virtual socket protocol network driver, where an improperly timed socket unbinding could result in a use-after-free issue. This flaw allows an attacker who can create and destroy arbitrary connections on virtual connections to read or modify system memory,...

Amazon Linux 2 : kernel (ALASKERNEL-5.4-2025-099)

The version of kernel installed on the remote host is prior to 5.4.156-83.273. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.4-2025-099 advisory. A race condition accessing file object in the Linux kernel OverlayFS subsystem was found in the way users d...

CVE-2025-20963

Out-of-bounds write in memory initialization in libsavsvc.so prior to SMR May-2025 Release 1 allows local attackers to write out-of-bounds memory...

CVE-2025-20964

Out-of-bounds write in parsing media files in libsavsvc.so prior to SMR May-2025 Release 1 allows local attackers to write out-of-bounds memory...

CVE-2025-0467

Kernel software installed and running inside a Guest VM may exploit memory shared with the GPU Firmware to write data outside the Guest's virtualised GPU memory...

Ivanti Endpoint Manager Pointer Dereference Vulnerability

Ivanti Endpoint Manager is an enterprise-class endpoint management solution for centralized management of all types of devices including Windows, MacOS, Linux, iOS/Android mobile devices, etc. to achieve unified configuration, security control and remote operation and maintenance. A pointer...

Huawei HarmonyOS Memory Write Privilege Bypass Vulnerability

Huawei HarmonyOS is a new distributed operating system developed by Huawei for the Internet of Everything era. It aims to provide a unified operating platform for multiple devices, breaking the device limitations of traditional operating systems and creating a cross-device, cross-platform...

CVE-2025-31172

Memory write permission bypass vulnerability in the kernel futex module Impact: Successful exploitation of this vulnerability may affect service confidentiality...

CVE-2025-31172

Memory write permission bypass vulnerability in the kernel futex module Impact: Successful exploitation of this vulnerability may affect service confidentiality...

CVE-2025-31173

Memory write permission bypass vulnerability in the kernel futex module Impact: Successful exploitation of this vulnerability may affect service confidentiality...

CVE-2025-31173

Memory write permission bypass vulnerability in the kernel futex module Impact: Successful exploitation of this vulnerability may affect service confidentiality...

CVE-2025-31173

CVE-2025-31173 corresponds to a memory write permission bypass in the kernel futex module, with Huawei HarmonyOS repeatedly identified as affected. Descriptions across CNVD/CNNVD and related feeds indicate a privilege-bypass in the kernel futex path that can impact service confidentiality, with s...

CVE-2025-31172

CVE-2025-31172 describes a memory write permission bypass in Huawei HarmonyOS kernel futex module. The issue stems from the kernel’s permission verification when a low-privilege process performs a futex system call, allowing unauthorized memory write access and potentially exposing confidential d...

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system from the Chinese company Huawei. Huawei HarmonyOS suffers from a privilege bypass vulnerability that originates from a kernel futex module memory write privilege bypass, which can be exploited by an attacker to affect service confidentiality...

PT-2025-15180 · Huawei · Harmonyos

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: A memory write permission bypass vulnerability exists in the kernel futex module. Successful exploitation of this issue may affect service confidentiality. Recommendations: At the moment,...

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is a new distributed operating system developed by Huawei for the Internet of Everything era. It aims to provide a unified operating platform for multiple devices, breaking the device limitations of traditional operating systems and creating a cross-device, cross-platform...

Imagination GPU Driver 安全漏洞

Imagination GPU Driver is a graphics driver from Imagination. A security vulnerability exists in Imagination GPU Driver that originates from the possibility that an unprivileged user could write to arbitrary physical memory pages via improper GPU system calls, potentially resulting in kernel data...

PT-2025-25848

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been identified, specifically in the vhost-scsi completion path. The issue arises when the vhost-scsi completion path accesses vq-log base while...