CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

140 matches found

CVE-2025-59610 Time-of-check Time-of-use (TOCTOU) Race Condition in Camera Driver

Memory Corruption when processing IOCTL requests with mismatched API versions due to concurrent modification of user-space buffer...

6.4CVSS5.8AI score0.0001EPSS

Exploits0References1

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: validate userq input args. This will assist in validating the userq input arguments and rejecting invalid userq requests during IOCTLs...

5.7AI score0.00026EPSS

Exploits0References1

ATTACKERKB•added 2026/04/17 12:0 a.m.•2 views

CVE-2025-70795

STProcessMonitor 11.11.4.0, part of the Safetica Application suite, allows an admin-privileged user to send crafted IOCTL requests to terminate processes that are protected through a third-party implementation. This is caused by insufficient caller validation in the driver's IOCTL handler, enabli...

5.5CVSS5.8AI score0.00008EPSS

Exploits0References8

Vulnrichment•added 2026/01/15 11:25 p.m.•1 views

CVE-2021-47786 Redragon Gaming Mouse - 'REDRAGON_MOUSE.sys' Denial of Service (PoC)

Redragon Gaming Mouse driver contains a kernel-level vulnerability that allows attackers to trigger a denial of service by sending malformed IOCTL requests. Attackers can send a crafted 2000-byte buffer with specific byte patterns to the REDRAGONMOUSE device to crash the kernel driver...

7.5CVSS6.4AI score0.00028EPSS

Exploits1References4

RedhatCVE•added 2026/01/09 9:32 a.m.•1 views

CVE-2024-39251

An issue in the component ControlCenter.sys/ControlCenter64.sys of ThundeRobot Control Center v2.0.0.10 allows attackers to access sensitive information, execute arbitrary code, or escalate privileges via sending crafted IOCTL requests...

10CVSS9.7AI score0.00144EPSS

Exploits1References1

Tenable Nessus•added 2025/12/09 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2025-40335

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/amdgpu: validate userq input args This will help on validating the userq input args, and rejecting for the invalid userq request at the IOCTLs first place...

5.8AI score0.00026EPSS

Exploits0References2

CVE•added 2025/10/28 12:0 a.m.•60 views

CVE-2025-61155

CVE-2025-61155 affects Hotta Studio’s GameDriverX64.sys kernel-mode anti-cheat driver (versions 7.23.4.7 and earlier). The vulnerability is in an IOCTL handler: an untrusted user-mode process can open the driver and send crafted IOCTLs, which execute in kernel mode with insufficient authenticatio...

5.5CVSS6.6AI score0.00011EPSS

In wildExploits1References2

CNNVD•added 2025/10/28 12:0 a.m.•3 views

Hotta Studio GameDriverX64.sys 安全漏洞

Hotta Studio GameDriverX64.sys is the underlying driver file for a game from Hotta Studio China. A security vulnerability exists in Hotta Studio GameDriverX64.sys version 7.23.4.7, which stems from improper handling of specially crafted IOCTL requests and could lead to a denial of service attack...

5.5CVSS6.4AI score0.00011EPSS

Exploits1References5