Lucene search
+L

43 matches found

cvelist
cvelist
added last week31 views

CVE-2026-34196 GPU DDK - UAF read and/or write of arbitrary physical memory due to integer truncation in PMRDevPhysAddrOSMem

Software installed and run as a non-privileged user may conduct improper GPU system calls to cause an integer overflow and map two GPU virtual addresses to the same physical address. One of these virutal mappings can be freed along with the physical page, allowing for a read/write UAF via the...

0.00118EPSS
Exploits0References1
cve
cve
added 2026/06/12 9:53 p.m.17 views

CVE-2026-41157

The CVE-2026-41157 entry concerns Imagination Graphics DDK with an OOB write in the GPU driver when processing WebGPU content in the GLES render path. The root cause is an integer overflow while computing a required memory size from untrusted input, which can yield a value smaller than needed; su...

9.8CVSS5.5AI score0.00358EPSS
Exploits0References1
nessus
nessus
added 2026/06/12 12:0 a.m.12 views

AlmaLinux 9 : kernel (ALSA-2026:24381)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:24381 advisory. kernel: smb: client: fix OOB reads parsing symlink error response CVE-2026-31613 kernel: Buffer overflow in drivers/xen/sys-hypervisor.c CVE-2026-31786...

8.1CVSS6.9AI score0.00378EPSS
Exploits4References5
cve
cve
added 2026/06/10 2:35 p.m.51 views

CVE-2026-49759

CVE-2026-49759 affects Erlang OTP erts inet_drv SCTP error handling. The sctp_parse_error_chunk() writes cause codes into a fixed-size stack-allocated spec[] without bounds checks, allowing a remote attacker who has SCTP access to overflow the stack and crash the BEAM VM (DoS). A crafted SCTP ERR...

8.8CVSS5.6AI score0.00497EPSS
Exploits0References8Affected Software2
redhat
redhat
added 2026/03/11 12:49 a.m.9 views

Moderate: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions and Red Hat Enterprise Linux 8.8 Telecommunications Update Service. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring Syste...

7.8CVSS6.7AI score0.00222EPSS
Exploits0References3
nessus
nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 7 : kernel-3.10.0-1160.53.1.el7 (AXSA:2022-2973:02)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-2973:02 advisory. kernel: perfeventparseaddrfilter memory CVE-2020-25704 kernel: fuse: fusedogetattr calls makebadinode in inappropriate situations CVE-2020-36322...

6.7CVSS8AI score0.0044EPSS
Exploits0References4
redhatcve
redhatcve
added 2026/01/09 11:16 a.m.6 views

CVE-2021-0458

In the FingerTipS touch screen driver, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

4.4CVSS5.4AI score0.00197EPSS
Exploits0References1
nessus
nessus
added 2025/12/09 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2023-53820

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - loop: loopsetstatusfrominfo check before assignment In loopsetstatusfrominfo, lo-looffset and lo-losizelimit should be checked before reassignment, because if a...

6AI score0.00242EPSS
Exploits0References2
rocky
rocky
added 2025/12/04 9:3 a.m.6 views

kernel-rt security update

An update is available for kernel-rt. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The kernel-rt packages provide the Real Time Linux Kernel, which enables...

7.8CVSS7.1AI score0.00163EPSS
Exploits0
nessus
nessus
added 2025/12/03 12:0 a.m.4 views

RHEL 8 : kernel (RHSA-2025:22388)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:22388 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: nfsd: handle getclientlocked...

7.8CVSS6.8AI score0.00163EPSS
Exploits0References14
nessus
nessus
added 2025/10/27 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2025-39987

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - can: hi311x: populate ndochangemtu to prevent buffer overflow Sending an PFPACKET allows to bypass the CAN framework logic and to directly reach the xmit...

7.4AI score0.00225EPSS
Exploits0References2
redhatcve
redhatcve
added 2025/10/20 7:28 p.m.14 views

CVE-2025-5555

A vulnerability has been found in Nixdorf Wincor PORT IO Driver up to 1.0.0.1. This affects the function sub11100 in the library wnport.sys of the component IOCTL Handler. Such manipulation leads to stack-based buffer overflow. Local access is required to approach this attack. The exploit has bee...

8.5CVSS7.7AI score0.00214EPSS
Exploits0References1
euvd
euvd
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-3235

Malware in sbrugna...

7.8CVSS7.6AI score0.00158EPSS
Exploits0References2
cnnvd
cnnvd
added 2025/06/20 12:0 a.m.4 views

OpenVPN ovpn-dco-win 安全漏洞

OpenVPN ovpn-dco-win is a virtual network adapter on Windows from OpenVPN. A security vulnerability exists in OpenVPN ovpn-dco-win version 1.3.0 and earlier and version 2.5.8 and earlier, which stems from a kernel driver buffer overflow that could cause a system crash...

5.5CVSS9AI score0.00227EPSS
Exploits0References4
redhatcve
redhatcve
added 2025/05/22 3:30 p.m.7 views

CVE-2020-10829

An issue was discovered on Samsung mobile devices with O8.0, P9.0, and Q10.0 Broadcom chipsets software. A kernel driver heap overflow leads to arbitrary code execution. The Samsung ID is SVE-2019-15880 March 2020...

7.8CVSS8AI score0.00158EPSS
Exploits0References1
debiancve
debiancve
added 2025/03/27 4:43 p.m.10 views

CVE-2023-52980

In the Linux kernel, the following vulnerability has been resolved: block: ublk: extending queuesize to fix overflow When validating drafted SPDK ublk target, in a case that assigning large queue depth to multiqueue ublk device, ublk target would run into a weird incorrect state. During rounds of...

7.8CVSS5.7AI score0.00229EPSS
Exploits0
nessus
nessus
added 2025/03/06 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2024-50177

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: fix a UBSAN warning in DML2.1 When programming phantom pipe, since...

5.5CVSS5.9AI score0.00189EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2024/06/21 12:0 a.m.9 views

PT-2024-20211 · Sony · Sony Xav-Ax5500

Name of the Vulnerable Software and Affected Versions: Sony XAV-AX5500 affected versions not specified Description: This issue allows physically present attackers to execute arbitrary code on affected installations of Sony XAV-AX5500 devices. Authentication is not required to exploit this issue...

6.8CVSS7.5AI score0.00893EPSS
Exploits0References8
bdu_fstec
bdu_fstec
added 2024/06/03 12:0 a.m.6 views

The vulnerability of the Windows Mobile Broadband operating system driver allows a hacker to execute arbitrary code.

The vulnerability of the Windows Mobile Broadband operating system’s driver is related to a numerical overflow vulnerability. Exploiting this vulnerability allows an attacker to execute arbitrary code by connecting a malicious USB device...

7.2CVSS6AI score0.00932EPSS
Exploits0References3
bdu_fstec
bdu_fstec
added 2024/06/03 12:0 a.m.8 views

The vulnerability of the Windows Mobile Broadband operating system driver allows a hacker to execute arbitrary code.

The vulnerability of the Windows Mobile Broadband operating system’s driver is related to a potential overflow condition. Exploiting this vulnerability could allow an attacker to execute arbitrary code by connecting a malicious USB device...

7.2CVSS6AI score0.00932EPSS
Exploits0References3
Rows per page
Query Builder