Lucene search
K

146 matches found

CNNVD
CNNVD
added 2022/11/07 12:0 a.m.5 views

Dell ELAN Miniport Touchpad Driver 安全漏洞

Dell ELAN Miniport Touchpad Driver is a miniport touchpad driver from Dell USA. A security vulnerability exists in Dell ELAN Miniport Touchpad Driver versions prior to 24.21.51.2. An attacker could exploit this vulnerability to cause a system crash by sending a certain IOCTL request...

4.7CVSS5.2AI score0.00257EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/05/02 12:0 a.m.5 views

Qualcomm 输入验证错误漏洞

A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way of miniaturizing circuits including primarily semiconductor devices, but also passive components, etc. and from time to time fabricated on the surface of semiconductor wafers. A security vulnerability exists in the Modem module of...

6.7CVSS6.8AI score0.0015EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2022/04/14 7:56 p.m.6 views

CVE-2021-40425

An out-of-bounds read vulnerability exists in the IOCTL GetProcessCommand and B03 of Webroot Secure Anywhere 21.4. A specially-crafted executable can lead to denial of service. An attacker can issue an ioctl to trigger this vulnerability. An out-of-bounds read vulnerability exists in the IOCTL...

7.1CVSS6.3AI score0.00327EPSS
Exploits1References1
NVD
NVD
added 2021/10/04 6:15 a.m.34 views

CVE-2021-41285

Ballistix MOD Utility through 2.0.2.5 is vulnerable to privilege escalation in the MODAPI.sys driver component. The vulnerability is triggered by sending a specific IOCTL request that allows low-privileged users to directly interact with physical memory via the MmMapIoSpace function call mapping...

7.8CVSS0.0052EPSS
Exploits1References2
Prion
Prion
added 2021/10/04 6:15 a.m.20 views

Design/Logic Flaw

Ballistix MOD Utility through 2.0.2.5 is vulnerable to privilege escalation in the MODAPI.sys driver component. The vulnerability is triggered by sending a specific IOCTL request that allows low-privileged users to directly interact with physical memory via the MmMapIoSpace function call mapping...

7.2CVSS7.5AI score0.0052EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2021/10/04 5:50 a.m.34 views

CVE-2021-41285

Ballistix MOD Utility through 2.0.2.5 is vulnerable to privilege escalation in the MODAPI.sys driver component. The vulnerability is triggered by sending a specific IOCTL request that allows low-privileged users to directly interact with physical memory via the MmMapIoSpace function call mapping...

7.8AI score0.0052EPSS
Exploits1References2
Prion
Prion
added 2021/03/05 2:15 a.m.23 views

Buffer overflow

The MsIo64.sys driver before 1.1.19.1016 in MSI Dragon Center before 2.0.98.0 has a buffer overflow that allows privilege escalation via a crafted 0x80102040, 0x80102044, 0x80102050, or 0x80102054 IOCTL request...

7.5CVSS9.7AI score0.11836EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2021/03/05 1:53 a.m.41 views

CVE-2021-27965

The MsIo64.sys driver before 1.1.19.1016 in MSI Dragon Center before 2.0.98.0 has a buffer overflow that allows privilege escalation via a crafted 0x80102040, 0x80102044, 0x80102050, or 0x80102054 IOCTL request...

9.9AI score0.11836EPSS
Exploits1References2
Mageia
Mageia
added 2021/02/19 10:27 a.m.80 views

Updated veracrypt package fixes a security vulnerability

IDRIX, Truecrypt Veracrypt, Truecrypt Prior to 1.23-Hotfix-1 Veracrypt, all versions Truecrypt is affected by a Buffer Overflow that can lead to information disclosure of kernel stack through a locally executed code with IOCTL request to driver CVE-2019-1010208...

3.3CVSS4.8AI score0.00461EPSS
Exploits0References1
NVD
NVD
added 2020/08/07 9:15 p.m.38 views

CVE-2020-15479

An issue was discovered in PassMark BurnInTest through 9.1, OSForensics through 7.1, and PerformanceTest through 10. The driver's IOCTL request handler attempts to copy the input buffer onto the stack without checking its size and can cause a buffer overflow. This could lead to arbitrary Ring-0...

8.8CVSS9.1AI score0.00677EPSS
Exploits1References4
Prion
Prion
added 2020/08/07 9:15 p.m.23 views

Buffer overflow

An issue was discovered in PassMark BurnInTest through 9.1, OSForensics through 7.1, and PerformanceTest through 10. The driver's IOCTL request handler attempts to copy the input buffer onto the stack without checking its size and can cause a buffer overflow. This could lead to arbitrary Ring-0...

7.2CVSS9AI score0.00677EPSS
Exploits1References4Affected Software3
Veracode
Veracode
added 2020/04/10 12:50 a.m.29 views

Denial Of Service (DoS)

The kernel is vulnerable to denial of service DoS. A flaw in the Linux kernel's packet writing driver could be triggered via the PKTCTRLCMDSTATUS IOCTL request, possibly allowing a local, unprivileged user with access to "/dev/pktcdvd/control" to cause an information leak. Note: By default, only...

6.6CVSS5.2AI score0.02416EPSS
Exploits7References28Affected Software1
Veracode
Veracode
added 2020/04/10 12:34 a.m.27 views

Information Disclosure

kernel is vulnerable to information disclosure. The vulnerability exists as missing boundary checks were reported in the Linux kernel SCTP implementation. This could, potentially, cause information disclosure via a specially crafted SCTPHMACIDENT IOCTL request...

4.7CVSS1.9AI score0.00833EPSS
Exploits5References20Affected Software1
NVD
NVD
added 2019/07/23 2:15 p.m.29 views

CVE-2019-1010208

IDRIX, Truecrypt Veracrypt, Truecrypt Prior to 1.23-Hotfix-1 Veracrypt, all versions Truecrypt is affected by: Buffer Overflow. The impact is: Minor information disclosure of kernel stack. The component is: Veracrypt NT Driver veracrypt.sys. The attack vector is: Locally executed code, IOCTL...

3.3CVSS3.6AI score0.00461EPSS
Exploits0References1
OSV
OSV
added 2019/07/23 2:15 p.m.29 views

CVE-2019-1010208

IDRIX, Truecrypt Veracrypt, Truecrypt Prior to 1.23-Hotfix-1 Veracrypt, all versions Truecrypt is affected by: Buffer Overflow. The impact is: Minor information disclosure of kernel stack. The component is: Veracrypt NT Driver veracrypt.sys. The attack vector is: Locally executed code, IOCTL...

3.3CVSS6.3AI score
Exploits0References1
Prion
Prion
added 2019/07/23 2:15 p.m.64 views

Buffer overflow

IDRIX, Truecrypt Veracrypt, Truecrypt Prior to 1.23-Hotfix-1 Veracrypt, all versions Truecrypt is affected by: Buffer Overflow. The impact is: Minor information disclosure of kernel stack. The component is: Veracrypt NT Driver veracrypt.sys. The attack vector is: Locally executed code, IOCTL...

2.1CVSS3.7AI score0.00461EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/07/23 1:12 p.m.39 views

CVE-2019-1010208

IDRIX, Truecrypt Veracrypt, Truecrypt Prior to 1.23-Hotfix-1 Veracrypt, all versions Truecrypt is affected by: Buffer Overflow. The impact is: Minor information disclosure of kernel stack. The component is: Veracrypt NT Driver veracrypt.sys. The attack vector is: Locally executed code, IOCTL...

3.5AI score0.00461EPSS
Exploits0References1
NVD
NVD
added 2016/04/13 2:59 p.m.19 views

CVE-2015-8620

Heap-based buffer overflow in the Avast virtualization driver aswSnx.sys in Avast Internet Security, Pro Antivirus, Premier, and Free Antivirus before 11.1.2253 allows local users to gain privileges via a Unicode file path in an IOCTL request...

7.8CVSS7.9AI score0.00503EPSS
Exploits1References4
Prion
Prion
added 2016/04/13 2:59 p.m.10 views

Heap overflow

Heap-based buffer overflow in the Avast virtualization driver aswSnx.sys in Avast Internet Security, Pro Antivirus, Premier, and Free Antivirus before 11.1.2253 allows local users to gain privileges via a Unicode file path in an IOCTL request...

7.2CVSS7.5AI score0.00503EPSS
Exploits1References4Affected Software4
Cvelist
Cvelist
added 2016/04/13 2:0 p.m.19 views

CVE-2015-8620

Heap-based buffer overflow in the Avast virtualization driver aswSnx.sys in Avast Internet Security, Pro Antivirus, Premier, and Free Antivirus before 11.1.2253 allows local users to gain privileges via a Unicode file path in an IOCTL request...

7.8AI score0.00503EPSS
Exploits1References4
Rows per page
Query Builder