The LendgineRouter.burn() will always REVERT due to the callback function forgot to send the due token0 back.

Lines of code Vulnerability details Impact Detailed description of the impact of this finding. The LendgineRouter.burn will always REVERT due to the callback function forgot to send the due token0 back. The callback function pairMintCallback is supposed to send back amount0 amount of token0 back ...

CVE-2022-3383

The Ultimate Member plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and including, 2.5.0 via the getoptionvaluefromcallback function that accepts user supplied input and passes it through calluserfunc. This makes it possible for authenticated attackers, with...

PT-2025-26018 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.19.0-rc6 Description: A use-after-free issue has been identified in the Linux kernel, specifically in the dm sm register threshold callback function. This issue can be triggered when a metadata commit fails,...

PT-2022-33448 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.19.2 Description: The issue is related to a use-after-free crash in the dm sm register threshold callback function. It was introduced in version v3.10 and fixed in version v5.19.2. The actual impact and attac...

CVE-2021-4212

A potential vulnerability in the SMI callback function used in the Legacy BIOS mode driver in some Lenovo Notebook models may allow an attacker with local access and elevated privileges to execute arbitrary code...

CVE-2021-4210

A potential vulnerability in the SMI callback function used in the NVME driver in some Lenovo Desktop, ThinkStation, and ThinkEdge models may allow an attacker with local access and elevated privileges to execute arbitrary code...

Code injection

A potential vulnerability in the SMI callback function used in the SMBIOS event log driver in some Lenovo Desktop, ThinkStation, and ThinkEdge models may allow an attacker with local access and elevated privileges to execute arbitrary code...

CVE-2021-4212

CVE-2021-4212 describes a local-privilege escalation vulnerability in the SMI callback function used by the Legacy BIOS mode driver on some Lenovo Notebook models. The issue could allow an attacker with local access and elevated privileges to execute arbitrary code. The affected component is the ...

CVE-2021-4211

A potential vulnerability in the SMI callback function used in the SMBIOS event log driver in some Lenovo Desktop, ThinkStation, and ThinkEdge models may allow an attacker with local access and elevated privileges to execute arbitrary code...

CVE-2021-4210

CVE-2021-4210 is tied to a vulnerability in the SMI callback function of the NVMe driver on Lenovo Desktop, ThinkStation, and ThinkEdge models. The connected documents describe that a local attacker with elevated privileges could execute arbitrary code via this flaw. The exploitation details are ...

CVE-2021-3786

A potential vulnerability in the SMI callback function used in CSME configuration of some Lenovo Notebook and ThinkPad systems could be used to leak out data out of the SMRAM range...

Code injection

A potential vulnerability in the SMI callback function used in CSME configuration of some Lenovo Notebook and ThinkPad systems could be used to leak out data out of the SMRAM range...

CVE-2021-3786

CVE-2021-3786 concerns Lenovo notebook/ThinkPad systems with a vulnerable SMI callback in the CSME configuration. The issue is a potential flaw in the SMI callback function that could allow leaking data from the SMRAM range. Public records describe this as a data leakage risk affecting confidenti...

CVE-2021-3719

CVE-2021-3719 concerns a vulnerability in the SMI callback that handles boot script tables for resuming from sleep state on Lenovo ThinkCentre and ThinkStation desktops/workstations. The issue could let an attacker with local access and elevated privileges execute arbitrary code by exploiting the...

PT-2021-21565 · Lenovo · Lenovo Thinkstation +1

Name of the Vulnerable Software and Affected Versions: Lenovo ThinkCentre and ThinkStation models affected versions not specified Description: A potential issue in the SMI callback function that handles boot script tables for resuming from sleep state may allow an attacker with local access and...

Access restrictions on CompoundToNotionalV2.notionalCallback can be bypassed

Handle cmichel Vulnerability details Vulnerability Details The CompoundToNotionalV2.notionalCallback is supposed to only be called from the verified contract that calls this callback but the access restrictions can be circumvented by simply providing sender = this as sender is a parameter of the...

Use after free in portaudio-rs

Affected versions of this crate is not panic safe within callback functions streamcallback and streamfinishedcallback. The call to user-provided closure might panic before a mem::forget call, which then causes a use after free that grants attacker to control the callback function pointer. This...

Exploit for Incorrect Authorization in Polkit_Project Polkit

CVE-2021-3560 a reliable C based exploit for CVE-2021-3560...

AZL-7183 CVE-2021-3588 affecting package bluez for versions less than 5.63-1

The clifeatreadcb function in src/gatt-database.c does not perform bounds checks on the 'offset' variable before using it as an index into an array for reading...

Hunting for Bugs in Windows Mini-Filter Drivers

Posted by James Forshaw, Project Zero In December Microsoft fixed 4 issues in Windows in the Cloud Filter and Windows Overlay Filter WOF drivers CVE-2020-17103, CVE-2020-17134, CVE-2020-17136, CVE-2020-17139. These 4 issues were 3 local privilege escalations and a security feature bypass, and the...