PT-2026-45479

Improper access control in the PCTCore64.sys Windows kernel driver from PC Tools Internet Security allows user-mode processes to access the PCTCoreDriver WDM device interface and invoke privileged IOCTL handlers. A local attacker with the ability to access or load the affected driver can exploit...

CVE-2025-69783

A local attacker can bypass OpenEDR's 2.5.1.0 self-defense mechanism by renaming a malicious executable to match a trusted process name e.g., csrss.exe, edrsvc.exe, edrcon.exe. This allows unauthorized interaction with the OpenEDR kernel driver, granting access to privileged functionality such as...

PT-2026-22767

An Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Portwell Engineering Toolkits version 4.8.2 could allow a local authenticated attacker to read and write to arbitrary memory via the Portwell Engineering Toolkits driver. Successful exploitation of this...

EUVD-2025-198044

A vulnerability was discovered in Awesome Miner thru 11.2.4 that allows arbitrary read and write to kernel memory and MSRs such as LSTAR as an unprivileged user. This is due to the implementation of an insecure version of WinRing0 1.2.0.5, renamed to IntelliBreeze.Maintenance.Service.sys that lac...

EUVD-2018-8750

Malware in sbrugna...

EUVD-2019-2422

Malware in sbrugna...

EUVD-2019-2799

Malware in sbrugna...

EUVD-2025-13993

Malicious code in bioql PyPI...

EUVD-2024-30758

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2019-12618

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - HashiCorp Nomad 0.9.0 through 0.9.1 has Incorrect Access Control via the exec driver. CVE-2019-12618 Note that Nessus relies on the presence of the package as...

Linux Distros Unpatched Vulnerability : CVE-2025-38266

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: pinctrl: mediatek: eint: Fix invalid pointer dereference for v1 platforms Commit 3ef9f710efc...

USN-7591-2: Linux kernel (FIPS) vulnerabilities

Michael Randrianantenaina discovered that the Bluetooth driver in the Linux Kernel contained an improper access control vulnerability. A nearby attacker could use this to connect a rougue device and possibly execute arbitrary code. CVE-2024-8805 It was discovered that the CIFS network file system...

PT-2025-26282 · Openvpn · Openvpn

Name of the Vulnerable Software and Affected Versions: OpenVPN ovpn-dco-win versions 1.3.0 and earlier OpenVPN ovpn-dco-win versions 2.5.8 and earlier Description: A buffer overflow in OpenVPN's Windows driver allows a local user process to send a too large control message buffer to the kernel...

CVE-2024-38310

Improper access control in some IntelR Graphics Driver software installers may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2024-10972

Velocidex WinPmem versions 4.1 and below suffer from an Improper Input Validation vulnerability whereby an attacker with admin access can trigger a BSOD with a parallel thread changing the memory’s access right under the control of the user-mode application. This is due to verification only being...

CVE-2024-33013 Buffer Over-read in WLAN Host

Transient DOS when driver accesses the ML IE memory and offset value is incremented beyond ML IE length...

CVE-2021-47479 staging: rtl8712: fix use-after-free in rtl8712_dl_fw

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8712: fix use-after-free in rtl8712dlfw Syzbot reported use-after-free in rtl8712dlfw. The problem was in race condition between r871xudevremove -ndoopen callback. It's easy to see from crash log, that driver accesses...

CVE-2024-35848

In the Linux kernel, the following vulnerability has been resolved: eeprom: at24: fix memory corruption race condition If the eeprom is not accessible, an nvmem device will be registered, the read will fail, and the device will be torn down. If another driver accesses the nvmem device after the...

PT-2023-4987

Name of the Vulnerable Software and Affected Versions Microsoft Streaming Service Proxy versions prior to the fixed version Description The issue is related to an elevation-of-privilege vulnerability in the Microsoft Streaming Service Proxy, which allows attackers to gain system-level rights. Thi...

PT-2022-23651 · Unknown · Mtp Driver

Name of the Vulnerable Software and Affected Versions: MTP driver versions prior to SMR Sep-2022 Release 1 Description: The issue is related to a use after free vulnerability in the mtp send signal function of the MTP driver. This vulnerability allows attackers to perform malicious actions...