Lucene search
K

203 matches found

Exploit DB
Exploit DB
added 2026/05/27 12:0 a.m.70 views

Realtek rtl819x - Local Privilege

Exploit Title: Realtek rtl819x - Local Privilege Escalation Date: 2026-05-03 Exploit Author: Daniil Gordeev Vendor Homepage: http://www.realtek.com Software Link: https://github.com/iptime-gpl/userappsn104qi representative GPL release Version: Realtek rtl819x Jungle SDK, all known versions throug...

7.7CVSS5.8AI score0.00669EPSS
Exploits1
CVE
CVE
added 2026/05/15 2:47 a.m.13 views

CVE-2023-31317

The CVE-2023-31317 issue affects the AMD Secure Processor (ASP). It is described as an improper restriction of operations within the bounds of a memory buffer, which could allow a local attacker to read or write to protected memory and potentially achieve arbitrary code execution. The AMD vulnera...

8.8CVSS6.2AI score0.00104EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/05 3:31 p.m.7 views

EUVD-2026-27325

The rtl8192cd Wi-Fi kernel driver in the Realtek rtl819x Jungle SDK all known versions through v3.4.14B does not perform any access control checks on the writemem ioctl 0x89F5 and readmem ioctl 0x89F6 debug handlers, which are compiled into production builds via the unconditionally defined...

7.7CVSS5.8AI score0.00669EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/05/05 12:0 a.m.28 views

PT-2026-37043

Name of the Vulnerable Software and Affected Versions Realtek rtl819x Jungle SDK versions prior to v3.4.14B Description The rtl8192cd Wi-Fi kernel driver fails to perform access control checks on the write mem ioctl 0x89F5 and read mem ioctl 0x89F6 debug handlers. These handlers are included in...

7.7CVSS5.8AI score0.00669EPSS
Exploits1References5
Cvelist
Cvelist
added 2026/05/05 12:0 a.m.46 views

CVE-2026-36355

The rtl8192cd Wi-Fi kernel driver in the Realtek rtl819x Jungle SDK all known versions through v3.4.14B does not perform any access control checks on the writemem ioctl 0x89F5 and readmem ioctl 0x89F6 debug handlers, which are compiled into production builds via the unconditionally defined...

0.00669EPSS
Exploits1References1
OSV
OSV
added 2026/04/03 1:27 p.m.6 views

JLSEC-2026-35

A flaw was found in postgresql. A purpose-crafted query can read arbitrary bytes of server memory. In the default configuration, any authenticated database user can complete this attack at will. The attack does not require the ability to create objects. If server settings include...

6.5CVSS5.9AI score0.0142EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/04/01 12:0 a.m.5 views

PT-2026-29650

CVE-2026-32929 V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read in VS6ComFile!get macro mem COM. Opening a crafted V7 file may lead to information disclosure from the… https://t.co/VzwAV69g6I...

8.4CVSS5.8AI score0.00193EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/31 3:33 p.m.12 views

Security Bulletin: Vulnerability in openssl library (CVE-2025-9230) affects Power HMC.

Summary The openssl library is used by Power Hardware Management Console HMC. HMC has addressed the applicable CVE. Vulnerability Details CVEID:CVE-2025-9230 DESCRIPTION: Issue summary: An application trying to decrypt CMS messages encrypted using password based encryption can trigger an...

7.5CVSS5.9AI score0.01744EPSS
Exploits0Affected Software1
EUVD
EUVD
added 2026/03/10 9:32 p.m.4 views

EUVD-2026-10751

Substance3D - Painter versions 11.1.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to memory exposure. An attacker could leverage this vulnerability to access sensitive information stored in memory. Exploitation of this issue requires user interaction in that a...

5.5CVSS5.8AI score0.00142EPSS
Exploits0References2
OSV
OSV
added 2026/03/03 6:16 p.m.5 views

CVE-2026-3437

An Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Portwell Engineering Toolkits version 4.8.2 could allow a local authenticated attacker to read and write to arbitrary memory via the Portwell Engineering Toolkits driver. Successful exploitation of this...

7.8CVSS5.9AI score0.00159EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/03/03 12:0 a.m.12 views

PT-2026-22767

Name of the Vulnerable Software and Affected Versions Portwell Engineering Toolkits version 4.8.2 Description An improper restriction of operations within the bounds of a memory buffer in the Portwell Engineering Toolkits driver allows a local authenticated attacker to read and write to arbitrary...

9.3CVSS6.1AI score0.00159EPSS
Exploits1References10
SUSE CVE
SUSE CVE
added 2026/02/27 12:25 a.m.6 views

SUSE CVE-2026-25941

FreeRDP is a free implementation of the Remote Desktop Protocol. Versions on the 2.x branch prior to to 2.11.8 and on the 3.x branch prior to 3.23.0 have an out-of-bounds read vulnerability in the FreeRDP client's RDPGFX channel that allows a malicious RDP server to read uninitialized heap memory...

4.3CVSS5.9AI score0.00284EPSS
Exploits1References9
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001487)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001487 advisory. In kernel/bpf/verifier.c in the Linux kernel before 5.12.13, a branch can be mispredicted e.g., because of type confusion and consequently an unprivileged BPF progra...

4.7CVSS6.7AI score0.00922EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2026/01/14 12:0 a.m.7 views

MiracleLinux 3 : kernel-2.6.18-274.5.AXS3 (AXSA:2012-220:01)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2012-220:01 advisory. The kernel package contains the Linux kernel vmlinuz, the core of any Linux operating system. The kernel handles the basic functions of the operating...

7.4CVSS7.2AI score0.00852EPSS
Exploits4References7
CNVD
CNVD
added 2025/12/29 12:0 a.m.3 views

IBM Concert Heap Memory Cleaning Improperly Vulnerability

IBM Concert is a generative artificial intelligence-driven automated application management and monitoring tool based on the watsonx platform, announced by IBM in May 2024 at the IBMThink conference in Boston, USA. IBM Concert suffers from an improper heap memory cleanup vulnerability that can be...

7.5CVSS5.9AI score0.00286EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/06 10:8 p.m.7 views

CVE-2025-11211

Out of bounds read in Media in Google Chrome prior to 141.0.7390.54 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. Chromium security severity: Medium...

0.00356EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-16717

Malware in sbrugna...

5.5CVSS5.7AI score0.01388EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2009-4597

Malware in sbrugna...

5.8CVSS9.2AI score0.02168EPSS
Exploits2References17
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-3455

Malware in sbrugna...

5.5CVSS7.3AI score0.01457EPSS
Exploits0References15
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-13101

Malware in sbrugna...

8.1CVSS6.7AI score0.01798EPSS
Exploits1References12
Rows per page
Query Builder