CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

87 matches found

CVE-2026-34193

Kernel software installed and running inside a Guest/Host VM may post improper commands to the GPU Firmware to trigger a write of data outside the intended GPU memory. A logic error in the address translation allowed a compromised Host Kernel to perform arbitrary writes to firmware memory...

4.3CVSS5.6AI score0.00013EPSS

Exploits0References1

NVD•added 5 days ago•10 views

CVE-2026-34193

4.3CVSS0.00013EPSS

Exploits0References1

Cvelist•added 5 days ago•21 views

CVE-2026-34193 GPU DDK - Arbitrary write via UFO updates due insufficient pointer validation in rgxfw_to_ptr()

0.00013EPSS

Exploits0References1

ATTACKERKB•added 5 days ago•7 views

CVE-2026-34193

4.3CVSS5.9AI score0.00013EPSS

Exploits0References2

Positive Technologies•added 5 days ago•7 views

PT-2026-45409

4.3CVSS5.9AI score0.00013EPSS

Exploits0References2

CVE•added 2026/05/15 2:51 a.m.•7 views

CVE-2026-0427

CVE-2026-0427 is tied to AMD GPU firmware: improper cleanup of shared register resources could allow an admin-privileged attacker in one Guest VM to access shared resources from another Guest VM. The vulnerability targets the GPU firmware’s handling of shared register space, enabling potential lo...

4.6CVSS5.8AI score0.00017EPSS

Exploits0References1

ATTACKERKB•added 2026/05/15 2:51 a.m.•5 views

CVE-2026-0427

Improper cleanup of shared register resources in GPU firmware could allow an admin-privileged attacker from a Guest Virtual machine VM to access these shared resources from another Guest VM, potentially resulting in the loss of confidentiality, integrity, or availability...

4.6CVSS5.8AI score0.00017EPSS

Exploits0References2

Vulnrichment•added 2026/05/15 2:51 a.m.•5 views

CVE-2026-0427

4.6CVSS5.8AI score0.00017EPSS

Exploits0References1

Tenable Nessus•added 2026/01/14 12:0 a.m.•2 views

Fedora 42 : linux-firmware (2026-1d240112ff)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-1d240112ff advisory. Update to 20260110: update firmware for MT7925 WiFi device mediatek MT7925: update bluetooth firmware to 20260106153314 mediatek MT7920: update bluetooth...

5.6AI score

Exploits0References1

OSV•added 2025/11/17 6:15 p.m.•0 views

CVE-2025-58407

Kernel or driver software installed on a Guest VM may post improper commands to the GPU Firmware to exploit a TOCTOU race condition and trigger a read and/or write of data outside the allotted memory escaping the virtual machine...

7.4CVSS5.8AI score0.00026EPSS

Exploits0References1

Cvelist•added 2025/11/17 5:18 p.m.•5 views

CVE-2025-58407 GPU DDK - TOCTOU bug affecting psFWMemContext->uiPageCatBaseRegSet

0.00026EPSS

Exploits0References1

Positive Technologies•added 2025/11/17 12:0 a.m.•2 views

PT-2025-47174

Name of the Vulnerable Software and Affected Versions versions prior to 2025 Description Kernel or driver software installed on a Guest VM may post improper commands to the GPU Firmware, potentially exploiting a TOCTOU race condition. This could lead to a read and/or write of data outside the...

7.4CVSS6.5AI score0.00026EPSS

Exploits0References3

Vulnrichment•added 2025/11/11 4:51 p.m.•1 views

CVE-2025-32091

Incorrect default permissions in some firmware for the IntelR ArcTM B-series GPUs within Ring 1: Device Drivers may allow an escalation of privilege. System software adversary with a privileged user combined with a low complexity attack may enable escalation of privilege. This result may...

8.4CVSS6.2AI score0.00015EPSS

Exploits0References1