Apple iOS IOKit Memory Corruption Vulnerability

Apple iOS is an operating system developed by Apple for mobile devices, and IOKit is one of the components that reads system information. A security vulnerability exists in the IOKit component in Apple iOS versions prior to 12.1.4. An attacker can exploit the vulnerability and may be able to...

Apple Opens Its Invite-Only Bug Bounty Program to All Researchers

As promised by Apple in August this year, the company today finally opened its bug bounty program to all security researchers, offering monetary rewards to anyone for reporting vulnerabilities in the iOS, macOS, watchOS, tvOS, iPadOS, and iCloud to the company. Since its launch three years ago,...

CVE-2019-8590

A logic issue was addressed with improved restrictions. This issue is fixed in macOS Mojave 10.14.5. An application may be able to execute arbitrary code with kernel privileges...

CVE-2018-4031

An exploitable vulnerability exists in the safe browsing function of the CUJO Smart Firewall, version 7003. The flaw lies in the way the safe browsing function parses HTTP requests. The server hostname is extracted from captured HTTP/HTTPS requests and inserted as part of a Lua statement without...

The vulnerability of the Win32k component of the Windows operating system allows a hacker to increase their privileges and execute arbitrary code in kernel mode.

The vulnerability of the Win32k component of the Windows operating system is related to errors in memory object handling. Exploiting this vulnerability can allow an attacker to enhance their privileges and execute arbitrary code in kernel mode using a specially created application...

The vulnerability of the Windows operating system’s kernel allows a hacker to elevate their privileges and execute arbitrary code in kernel mode.

The vulnerability of the Windows operating system’s kernel is related to errors in memory object handling. Exploiting this vulnerability can allow an attacker to enhance their privileges and execute arbitrary code in kernel mode using a specially created application...

The vulnerability of the win32k component of the Windows operating system, which allows a hacker to elevate their privileges and execute arbitrary code in kernel mode.

The vulnerability of the win32k component of the Windows operating system is related to errors in memory object handling. Exploiting this vulnerability can allow an attacker to enhance their privileges and execute arbitrary code in kernel mode using a specially created application...

The vulnerability of the af_alg_release function in the Linux operating system allows a hacker to execute arbitrary code in kernel mode.

The vulnerability of the afalgrelease function crypto/afalg.c in the Linux kernel is related to the ignoring of setting the NULL value in certain fields of the sockfssetattr structure. Exploiting this vulnerability allows an attacker to execute arbitrary code in kernel mode...

The vulnerability of the Win32k component of the Windows operating system allows a hacker to increase their privileges and execute arbitrary code in kernel mode.

The vulnerability of the Win32k component of the Windows operating system is related to errors in memory object handling. Exploiting this vulnerability can allow an attacker to enhance their privileges and execute arbitrary code in kernel mode through a specially created application...

PT-2019-6076 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.2 Description: The issue is related to the use of memory after it has been freed in the block subsystem of the Linux kernel, specifically involving the blk mq free rqs and blk cleanup queue functions. This can...

The vulnerability of the Win32k component of the Windows operating system, which allows a hacker to execute arbitrary code in kernel mode

The vulnerability of the Win32k component of the Windows operating system is related to deficiencies in access control. Exploiting this vulnerability allows an attacker to execute arbitrary code in kernel mode using a specially created application...

VulnCheck KEV: CVE-2019-0803

Microsoft Win32k contains an unspecified vulnerability due to it failing to properly handle objects in memory causing privilege escalation. Successful exploitation allows an attacker to run code in kernel mode...

VulnCheck KEV: CVE-2019-0808

Microsoft Win32k contains a privilege escalation vulnerability due to the component failing to properly handle objects in memory. Successful exploitation allows an attacker to run code in kernel mode...

CVE-2019-6218

A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12.1.2. A malicious application may be able to execute arbitrary code with kernel privileges...

VulnCheck KEV: CVE-2019-0797

Microsoft Win32k contains a privilege escalation vulnerability when the Win32k component fails to properly handle objects in memory. Successful exploitation allows an attacker to execute code in kernel mode...

Android - binder Use-After-Free via fdget() Optimization

This bug report describes two different issues in different branches of the binder kernel code. The first issue is in the upstream Linux kernel, commit 7f3dc0088b98 "binder: fix proc-files use-after-free"; the second issue is in the wahoo kernel and maybe elsewhere? but at least the android commo...

Antiy AVL ATool Buffer Overflow Vulnerability

Antiy AVL ATool is a security management tool with anti-virus features from Antiy Labs in China. A buffer overflow vulnerability in the handling of IOCTL 0x80002004 by the ssdt.sys kernel driver in Antiy AVL ATool version 1.0.0.22 can be exploited by a local attacker to execute arbitrary code in...

Local Access Privilege Vulnerability in Multiple Siemens Products

Siemens SINUMERIK 808D and so on are the German Siemens Siemens company's CNC machine tool system controller. A security vulnerability exists in several Siemens products. A local attacker can exploit this vulnerability with ioctl calls to perform out-of-bounds reads, arbitrary writes, or execute...

CVE-2018-11465

A vulnerability has been identified in SINUMERIK 808D V4.7 All versions, SINUMERIK 808D V4.8 All versions, SINUMERIK 828D V4.7 All versions V4.7 SP6 HF1, SINUMERIK 840D sl V4.7 All versions V4.7 SP6 HF5, SINUMERIK 840D sl V4.8 All versions V4.8 SP3. A local attacker could use ioctl calls to do ou...

Microsoft Windows Win32k Privilege Mobilization Vulnerability

Microsoft Windows 10 and others are a series of operating systems released by Microsoft Corporation in the U.S. Win32k is a 32-bit environment for one of these operating systems. A lift vulnerability exists in the Microsoft Win32k component that stems from a program's failure to properly handle...