CVE-2026-44069

An integer underflow in the volxlate function in Netatalk 3.0.0 through 4.4.2 allows a local privileged user to obtain limited information, modify limited data, or cause a minor service disruption via crafted volume translation input...

Netatalk 数字错误漏洞

Netatalk is an open-source software developed by Netatalk. It provides AFP file server functionality for Classic Mac OS and macOS on Unix-like operating systems. Versions 3.0.0 to 4.4.2 of Netatalk contain a numerical error vulnerability. This vulnerability stems from an integer underflow in the...

CVE-2025-27560

Loop with unreachable exit condition 'infinite loop' for some IntelR Platform within Ring 0: Kernel may allow a denial of service. System software adversary with a privileged user combined with a low complexity attack may enable denial of service. This result may potentially occur via local acces...

CVE-2025-27560

Loop with unreachable exit condition 'infinite loop' for some IntelR Platform within Ring 0: Kernel may allow a denial of service. System software adversary with a privileged user combined with a low complexity attack may enable denial of service. This result may potentially occur via local acces...

CVE-2025-58475

The CVE-2025-58475 entry concerns improper input validation in libsec-ril.so prior to Samsung SMR Dec-2025 Release 1, which allows a local privileged attacker to write out-of-bounds memory. Affected component: libsec-ril.so (pre-December 2025 patch level). Root cause: input validation flaw leadin...

EUVD-2025-27256

Malicious code in bioql PyPI...

CVE-2025-33045

APTIOV contains vulnerabilities in the BIOS where a privileged user may cause “Write-what-where Condition” and “Exposure of Sensitive Information to an Unauthorized Actor” through local access. The successful exploitation of these vulnerabilities can lead to information disclosure, arbitrary data...

CVE-2025-33045 Legacy Serial Redirection SMRAM Vulnerabilities

APTIOV contains vulnerabilities in the BIOS where a privileged user may cause “Write-what-where Condition” and “Exposure of Sensitive Information to an Unauthorized Actor” through local access. The successful exploitation of these vulnerabilities can lead to information disclosure, arbitrary data...

CVE-2025-33045

AMI AptioV BIOS contains BIOS-level vulnerabilities enabling a privileged local attacker to perform a write-what-where operation and expose sensitive information, potentially leading to information disclosure and arbitrary data writes with impact to confidentiality, integrity, and availability. S...

CVE-2025-24296

Improper input validation in some firmware for the IntelR E810 Ethernet before version 4.6 may allow a privileged user to enable denial of service via local access...

CVE-2025-24313

Improper access control for some Device Plugins for Kubernetes software maintained by Intel before version 0.32.0 may allow a privileged user to potentially enable denial of service via local access...

CVE-2023-22379

Improper input validation in some IntelR Server Board BMC firmware before version 2.90 may allow a privileged user to enable information disclosure via local access...

Zoom Workplace 安全漏洞

Zoom Workplace is a desktop application from Zoom USA. A security vulnerability exists in Zoom Workplace versions prior to 6.1.5, which stems from uncontrolled resource consumption by the installer and could lead to the disclosure of information via local access by privileged users...

kernel: netfilter: xtables sctp out-of-bounds read in match_flags()

A flaw was found in the Netfilter subsystem in the Linux kernel. The sctpmtcheck did not validate the flagcount field. This flaw allows a local privileged CAPNETADMIN attacker to trigger an out-of-bounds read, leading to a crash or information disclosure...

CVE-2021-4326

A vulnerability in Imperative framework which allows already-privileged local actors to execute arbitrary shell commands via plugin install/update commands, or maliciously formed environment variables. Impacts Zowe CLI...

Intel(R) SSD DC 安全漏洞

IntelR SSD DC is an internal solid state drive from Intel Corporation USA. A security vulnerability exists in IntelR SSD DC Products, which stems from a failure in the firmware protection mechanism that could lead to information disclosure via local access by a privileged user...

CVE-2021-38967

IBM MQ Appliance 9.2 CD and 9.2 LTS could allow a local privileged user to inject and execute malicious code. IBM X-Force ID: 212441...

CVE-2020-12366

Insufficient input validation in some IntelR Graphics Drivers before version 27.20.100.8587 may allow a privileged user to potentially enable an escalation of privilege via local access...

CVE-2019-11102

Insufficient input validation in IntelR DAL software for IntelR CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and 14.0.10; IntelR TXE before versions 3.1.70 and 4.0.20 may allow a privileged user to potentially enable information disclosure via local access...

CVE-2019-14612

Out of bounds write in firmware for IntelR NUCR may allow a privileged user to potentially enable escalation of privilege via local access...