1762 matches found
CVE-2025-69783
CVE-2025-69783 concerns OpenEDR’s 2.5.1.0 self-defense mechanism. A local attacker can rename a malicious executable to a trusted process name (for example, csrss.exe, edrsvc.exe, edrcon.exe), enabling unauthorized interaction with the OpenEDR kernel driver. This exposes privileged functionality ...
CVE-2025-69783
A local attacker can bypass OpenEDR's 2.5.1.0 self-defense mechanism by renaming a malicious executable to match a trusted process name e.g., csrss.exe, edrsvc.exe, edrcon.exe. This allows unauthorized interaction with the OpenEDR kernel driver, granting access to privileged functionality such as...
CVE-2026-24283
CVE-2026-24283 involves a local elevation-of-privilege in the UNC Provider Kernel Driver. The vulnerability is rated HIGH with CVSS 3.1: 8.8, impacting confidentiality, integrity, and availability at HIGH levels, exploitable with LOCAL attack vector and LOW complexity, requiring LOW privileges an...
CVE-2026-24283 Multiple UNC Provider Kernel Driver Elevation of Privilege Vulnerability
...
Multiple UNC Provider Kernel Driver Elevation of Privilege Vulnerability
Heap-based buffer overflow in Windows File Server allows an authorized attacker to elevate privileges locally...
K000160226: Intel 800 Series Ethernet vulnerability CVE-2025-24325
Security Advisory Description Improper input validation in the Linux kernel-mode driver for some IntelR 800 Series Ethernet before version 1.17.2 may allow an authenticated user to potentially enable escalation of privilege via local access. CVE-2025-24325 Impact This flaw allows an authenticated...
kernel: drm/xe: Make dma-fences compliant with the safe access rules
In the Linux kernel, the following vulnerability has been resolved: drm/xe: Make dma-fences compliant with the safe access rules Xe can free some of the data pointed to by the dma-fences it exports. Most notably the timeline name can get freed if userspace closes the associated submit queue. At t...
CVE-2026-3796
A weakness has been identified in Qi-ANXIN QAX Virus Removal up to 2025-10-22. The affected element is the function ZwTerminateProcess in the library QKSecureIOImp.sys of the component Mini Filter Driver. Executing a manipulation can lead to improper access controls. The attack is restricted to...
EUVD-2025-208323
A stack buffer overflow vulnerability exists in the Wincor Nixdorf wnBios64.sys kernel driver version 1.2.0.0 in the IOCTL handler for code 0x80102058. The vulnerability is caused by missing bounds checking on the user-controlled Options parameter before copying data into a 40-byte stack buffer...
CVE-2025-70616
A stack buffer overflow vulnerability exists in the Wincor Nixdorf wnBios64.sys kernel driver version 1.2.0.0 in the IOCTL handler for code 0x80102058. The vulnerability is caused by missing bounds checking on the user-controlled Options parameter before copying data into a 40-byte stack buffer...
CVE-2025-70616
A stack buffer overflow vulnerability exists in the Wincor Nixdorf wnBios64.sys kernel driver version 1.2.0.0 in the IOCTL handler for code 0x80102058. The vulnerability is caused by missing bounds checking on the user-controlled Options parameter before copying data into a 40-byte stack buffer...
PT-2026-23482
Name of the Vulnerable Software and Affected Versions Wincor Nixdorf wnBios64.sys version 1.2.0.0 Description A stack buffer overflow exists in the wnBios64.sys kernel driver within the IOCTL handler for code 0x80102058. The issue is due to a lack of bounds checking on the user-controlled Options...
CVE-2025-70616
A stack buffer overflow vulnerability exists in the Wincor Nixdorf wnBios64.sys kernel driver version 1.2.0.0 in the IOCTL handler for code 0x80102058. The vulnerability is caused by missing bounds checking on the user-controlled Options parameter before copying data into a 40-byte stack buffer...
CVE-2025-70616
A stack buffer overflow vulnerability exists in the Wincor Nixdorf wnBios64.sys kernel driver version 1.2.0.0 in the IOCTL handler for code 0x80102058. The vulnerability is caused by missing bounds checking on the user-controlled Options parameter before copying data into a 40-byte stack buffer...
Wincor Nixdorf wnBios64.sys 安全漏洞
Wincor Nixdorf wnBios64.sys is a kernel driver developed by the German company Wincor Nixdorf. The version wnBios64.sys 1.2.0.0 contains a security vulnerability. This vulnerability stems from the lack of boundary checks in the IOCTL handler of code 0x80102058. It may lead to stack buffer...
K000160225: Intel 800 Ethernet vulnerability CVE-2025-23241
Security Advisory Description Integer overflow or wraparound in the Linux kernel-mode driver for some IntelR 800 Series Ethernet before version 1.17.2 may allow an authenticated user to potentially enable denial of service via local access. CVE-2025-23241 Impact There is no impact; F5 products ar...
K000160224: Intel 800 Series Ethernet vulnerability CVE-2025-24484
Security Advisory Description Improper input validation in the Linux kernel-mode driver for some IntelR 800 Series Ethernet before version 1.17.2 may allow an authenticated user to potentially enable escalation of privilege via local access. CVE-2025-24484 Impact There is no impact; F5 products a...
kernel: mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats
In the Linux kernel, the following vulnerability has been resolved: mlxsw: spectrummr: Fix use-after-free when updating multicast route stats Cited commit added a dedicated mutex instead of RTNL to protect the multicast route list, so that it will not change while the driver periodically traverse...
Exploit for Improper Privilege Management in Microsoft
Windows Privilege Escalation ========================== A col...
ViGEmBus-Driver-Exploitation
Summary ViGEmBus.sys is a kernel-mode driver used for virtu...