Lucene search
+L

1705 matches found

EUVD
EUVD
added 2026/05/15 1:53 a.m.22 views

EUVD-2025-209871

A buffer overflow vulnerability within AMD Sensor Fusion Hub Driver can allow a local attacker to write out of bounds, potentially resulting in denial of service or crash...

6.8CVSS6AI score0.00101EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/15 12:0 a.m.15 views

PT-2026-41251

A buffer overflow vulnerability within AMD Sensor Fusion Hub Driver can allow a local attacker to write out of bounds, potentially resulting in denial of service or crash...

6.8CVSS6AI score0.00101EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/13 12:0 a.m.8 views

CVE-2025-29338

NXP moal.ko Wi-Fi driver 5.1.7.10 FW version from v17.92.1.p149.43 To v17.92.1.p149.157 was discovered to contain a buffer overflow via the modpara parameter in the woalinitmoduleparam function...

6AI score0.00183EPSS
Exploits1References3
CVE
CVE
added 2026/05/12 4:59 p.m.60 views

CVE-2026-40397

CVE-2026-40397 describes an integer underflow (wrap/wraparound) in the Windows Common Log File System Driver that enables a locally authenticated attacker to elevate privileges. The description indicates a local, privileges-required (low), no user interaction vulnerability with high impact to con...

7.8CVSS5.9AI score0.00273EPSS
Exploits0References1Affected Software14
Vulnrichment
Vulnrichment
added 2026/05/12 4:58 p.m.8 views

CVE-2026-32161 Windows Native WiFi Miniport Driver Remote Code Execution Vulnerability

...

7.5CVSS5.8AI score0.00297EPSS
Exploits0References1
CVE
CVE
added 2026/05/12 4:58 p.m.42 views

CVE-2026-41088

CVE-2026-41088 affects Windows: External control of file name or path in the Windows Ancillary Function Driver for WinSock can allow an authorized local user to elevate privileges. The available connected records corroborate the issue description (Windows WinSock driver path/name control enabling...

7.8CVSS5.8AI score0.00319EPSS
Exploits0References1Affected Software9
CVE
CVE
added 2026/05/12 4:58 p.m.50 views

CVE-2026-40407

CVE-2026-40407 describes a heap-based buffer overflow in the Windows Common Log File System (CLFS) Driver that permits an authorized, local attacker to elevate privileges. The vulnerability impact is local privilege escalation with a CVSS v3.1 base score of 7.8 (HIGH) and impact to confidentialit...

7.8CVSS5.9AI score0.00304EPSS
Exploits0References1Affected Software14
Vulnrichment
Vulnrichment
added 2026/05/12 4:58 p.m.10 views

CVE-2026-35422 Windows TCP/IP Driver Security Feature Bypass Vulnerability

...

6.5CVSS5.8AI score0.00614EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2026/05/12 2:0 p.m.20 views

Windows Kernel-Mode Driver Remote Code Execution Vulnerability

Use after free in Windows Kernel-Mode Drivers allows an authorized attacker to execute code over a network...

8CVSS6AI score0.00511EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/05/12 2:0 p.m.12 views

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

Access of resource using incompatible type 'type confusion' in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally...

7.8CVSS5.8AI score0.00319EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/05/12 2:0 p.m.11 views

Windows TCP/IP Driver Security Feature Bypass Vulnerability

Authentication bypass using an alternate path or channel in Windows TCP/IP allows an authorized attacker to bypass a security feature over a network...

6.5CVSS5.8AI score0.00614EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/05/12 2:0 p.m.17 views

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

Access of resource using incompatible type 'type confusion' in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally...

7.8CVSS5.8AI score0.00314EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/12 12:0 a.m.17 views

PT-2026-40092

Unchecked return value for some IntelR QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result ma...

4.8CVSS5.7AI score0.00096EPSS
Exploits0References2
Rosalinux
Rosalinux
added 2026/05/08 11:3 a.m.15 views

Advisory ROSA-SA-2026-3264

Software: kernel 4.18.0 OS: ROSA Virtualization 3.1 unaffected versions = kernel-4.18.0-553.123.1.el810 affected versions lock, allowing a local attacker to cause a denial of service or execute arbitrary code when frequently switching a thread simultaneously with opening/closing a related...

9.8CVSS7AI score0.96267EPSS
Exploits231
CNNVD
CNNVD
added 2026/05/06 12:0 a.m.12 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the q6asm driver failing to properly discard DSP responses with closed data streams, potentially...

5.5CVSS5.8AI score0.00112EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/06 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from out-of-bounds array index access in the ntbhwswitchtec driver. This vulnerability may lead to...

7.1CVSS5.8AI score0.00126EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/05/02 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-31763

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - iio: gyro: mpu3050: Fix incorrect freeirq variable The handler for the IRQ part of this driver is mpu3050-trig but, in the teardown freeirq is called with handl...

5.5CVSS6AI score0.00123EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/29 12:0 a.m.12 views

EnTech Taiwan TVicPort 输入验证错误漏洞

EnTech Taiwan TVicPort is a driver development component provided by EnTech Taiwan, which allows users to access hardware ports and control underlying devices. There are input validation vulnerabilities in the EnTech Taiwan TVicPort Product v4.0 version and File v5.2.1.0 version. These...

7.8CVSS5.8AI score0.0013EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/17 12:0 a.m.36 views

CVE-2025-70795

STProcessMonitor 11.11.4.0, part of the Safetica Application suite, allows an admin-privileged user to send crafted IOCTL requests to terminate processes that are protected through a third-party implementation. This is caused by insufficient caller validation in the driver's IOCTL handler, enabli...

0.00203EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2026/04/17 12:0 a.m.9 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007446)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007446 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: early: xhci-dbc: Fix a potential out-of-bound memory access If xdbcbulkwrite fails, the valu...

5.6AI score0.00214EPSS
Exploits0References4
Rows per page
Query Builder