CVE-2021-25437

Improper access control vulnerability in Tizen FOTA service prior to Firmware update JUL-2021 Release allows attackers to arbitrary code execution by replacing FOTA update file...

CVE-2020-12122

In Max Secure Max Spyware Detector 1.0.0.044, the driver file MaxProc64.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x2200019. This also extends to the various other products from Max Secure...

Cmcm Drivergenius Buffer Error Vulnerability

Cmcm Drivergenius Driver Genius is a software for Windows system to solve the driver adaptation update and download from the Chinese company Beijing Cheetah Mobile Technology Co Ltd Cmcm. DriverGenius 9.61.3708.3054 MyDrivers64.sys suffers from a buffer error vulnerability that can be exploited b...

Jingyun Antivirus Input Validation Error Vulnerability

Jingyun Antivirus is an anti-virus, real-time protection, proactive defense anti-virus engine for personal terminal devices from China Jingyun Company. A security vulnerability exists in Jingyun Antivirus version v2.4.2.39, which originates from a failure to validate an input value from IOCtl...

Jingyun Antivirus Input Validation Error Vulnerability

Jingyun Antivirus is an anti-virus, real-time protection, proactive defense anti-virus engine for personal terminal devices from China Jingyun Company. A security vulnerability exists in Jingyun Antivirus version v2.4.2.39, which stems from a failure to validate an input value from IOCtl...

PT-2020-8642 · Unknown · Juuko K-808

Name of the Vulnerable Software and Affected Versions: JUUKO K-808 versions prior to numbers ending ...9A, ...9B, ...9C, etc. Description: The issue allows remote attackers to execute commands on vulnerable installations of the equipment. No authentication is required to exploit this issue. The...

CVE-2020-14956

In Windows cleaning assistant 3.2, the driver file AtpKrnl.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x223CCA...

Cheetah free wifi input validation error vulnerability

Cheetah free wifi is a calculator wireless network sharing software from China Cheetah Mobile Cheetah. An input validation error vulnerability exists in the liebaonat.sys file in Cheetah free wifi version 5.1, which originates from the program not validating the input value of IOCtl 0x830020f8,...

Unspecified Vulnerability in Rivet Killer Control Center (CNVD-2020-19858)

Rivet Killer Control Center is a computer performance optimization and control software. The program mainly supports application checking and setting priorities. A security vulnerability exists in Rivet Killer Control Center, an issue was discovered in Rivet Killer Control Center prior to...

Schneider-electric Modicon Improper Control of Generation of Code ('Code Injection')

In Modicon Quantum all firmware versions, a CWE-94: Code Injection vulnerability could cause an unauthorized firmware modification with possible Denial of Service when using Modbus protocol. File data ot500209.nasl...

STOPzilla AntiMalware Arbitrary Write Vulnerability

STOPzilla AntiMalware is a malware removal software. An arbitrary write vulnerability exists in the driver file szkg64.sys in STOPzilla AntiMalware 6.5.2.59. The vulnerability stems from an unverified output buffer address value starting at IOCtl 0x80002063. An attacker can exploit this...

STOPzilla AntiMalware Arbitrary Write Vulnerability (CNVD-2019-40577)

STOPzilla AntiMalware is a malware removal software. An arbitrary write vulnerability exists in the driver file szkg64.sys in STOPzilla AntiMalware 6.5.2.59. The vulnerability stems from an unverified output buffer address value starting at IOCtl 0x8000206B. An attacker can exploit this...

STOPzilla AntiMalware Null Pointer Dereference Vulnerability

STOPzilla AntiMalware is a malware removal software. A null pointer dereference vulnerability exists in the driver file szkg64.sys in STOPzilla AntiMalware 6.5.2.59. The vulnerability stems from an unverified output buffer address value starting at IOCtl 0x80002028. An attacker could exploit this...

CVE-2018-15730

An issue was discovered in STOPzilla AntiMalware 6.5.2.59. The driver file szkg64.sys contains a Denial of Service vulnerability due to not validating the output buffer address value from IOCtl 0x80002067...

CVE-2018-15732

An issue was discovered in STOPzilla AntiMalware 6.5.2.59. The driver file szkg64.sys contains an Arbitrary Write vulnerability due to not validating the output buffer address value from IOCtl 0x80002063...

CVE-2018-15729

An issue was discovered in STOPzilla AntiMalware 6.5.2.59. The driver file szkg64.sys contains a Denial of Service vulnerability due to not validating the output buffer address value from IOCtl 0x8000204B...

CVE-2018-15736

An issue was discovered in STOPzilla AntiMalware 6.5.2.59. The driver file szkg64.sys contains a Denial of Service vulnerability due to not validating the output buffer address value from IOCtl 0x8000204F...

CVE-2019-6494

IMFForceDelete.sys in IObit Malware Fighter 6.2 allows a low privileged user to send IOCTL 0x8016E000 along with a user defined string to a file; that file will be promptly deleted regardless of access controls...

Hetronic Nova-M Replay Attack Vulnerability

This vulnerability allows remote attackers to issue commands on vulnerable installations of Hetronic equipment. Authentication is not required to exploit this vulnerability. The specific flaw exists with the communication between the transmitter and receiver pair. By using a fixed control code an...

CVE-2018-19522

DriverAgent 2.2015.7.14, which includes DrvAgent64.sys 1.0.0.1, allows a user to send an IOCTL 0x800020F4 with a buffer containing user defined content. The driver's subroutine will execute a wrmsr instruction with the user's buffer for partial input...