43863 matches found
kernel: futex/requeue: Prevent NULL pointer dereference in remove_waiter() on self-deadlock
A flaw was found in the Linux kernel's futex Fast Userspace Mutex requeue mechanism. When a non-top waiter attempts to requeue a Priority Inheritance PI futex it already owns, a NULL pointer dereference can occur. This issue, specifically within the removewaiter function during a self-deadlock...
CVE-2026-15029
Untrusted Pointer Dereference in ASUS System Control Interface v3, ASUS System Control Interface, and ASUS Business Manager allows a local administrator to perform arbitrary physical memory read and write operations via crafted IOCTL requests to the driver, bypassing OS-enforced memory protection...
CVE-2026-15029
Untrusted Pointer Dereference in ASUS System Control Interface v3, ASUS System Control Interface, and ASUS Business Manager allows a local administrator to perform arbitrary physical memory read and write operations via crafted IOCTL requests to the driver, bypassing OS-enforced memory protection...
CVE-2026-15029
The CVE-2026-15029 entry covers an Untrusted Pointer Dereference in ASUS System Control Interface v3, ASUS System Control Interface, and ASUS Business Manager. The vulnerability permits a local administrator to perform arbitrary physical memory read and write operations via crafted IOCTL requests...
CVE-2026-48340
Bridge is affected by an Untrusted Pointer Dereference vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing
A flaw was found in OpenSSL. A remote attacker could exploit this vulnerability by sending a specially crafted Cryptographic Message Syntax CMS EnvelopedData message. During the processing of a KeyTransportRecipientInfo with RSA-OAEP encryption, the system attempts to access an optional parameter...
CVE-2026-48340 Bridge | Untrusted Pointer Dereference (CWE-822)
Bridge is affected by an Untrusted Pointer Dereference vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2026-48340
CVE-2026-48340 affects Adobe Bridge via an Untrusted Pointer Dereference in the Bridge component. The underlying issue enables arbitrary code execution in the context of the current user due to dereferencing an untrusted pointer. Exploitation requires user interaction: a victim must open a malici...
CVE-2026-55138
Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to disclose information locally...
CVE-2026-55136
Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally...
CVE-2026-50673
Null pointer dereference in Windows Kernel allows an authorized attacker to elevate privileges locally...
CVE-2026-50441
Untrusted pointer dereference in Windows Resilient File System ReFS allows an authorized attacker to elevate privileges locally...
CVE-2026-50382
Untrusted pointer dereference in Windows DirectX allows an authorized attacker to execute code locally...
CVE-2026-50315
Null pointer dereference in Windows Image Acquisition allows an authorized attacker to elevate privileges locally...
CVE-2026-48580
Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to disclose information locally...
Windows Resilient File System (ReFS) Elevation of Privilege Vulnerability
Untrusted pointer dereference in Windows Resilient File System ReFS allows an authorized attacker to elevate privileges locally...
Microsoft Excel Information Disclosure Vulnerability
Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to disclose information locally...
DirectX Graphics Kernel Remote Code Execution Vulnerability
Untrusted pointer dereference in Windows DirectX allows an authorized attacker to execute code locally...
Windows Kernel Elevation of Privilege Vulnerability
Null pointer dereference in Windows Kernel allows an authorized attacker to elevate privileges locally...
kernel: net: bridge: use a stable FDB dst snapshot in RCU readers
A flaw was found in the Linux kernel. Inconsistent handling of local Forwarding Database FDB entries in the bridge networking component's RCU Read-Copy-Update readers can lead to a null-pointer dereference. A local attacker could exploit this by triggering a concurrent update to an FDB entry,...