Lucene search
K

1760 matches found

NVD
NVD
added 2026/05/11 6:16 p.m.8 views

CVE-2026-3609

Wellbia's XIGNCODE3 xhunter1.sys kernel driver Privilege Escalation Vulnerability provides access to IRPMJREITS command interface, which allows any user process to request a PROCESSALLACCESS. Cross reference to KVE 2023-5589 https://krcert.or.kr...

7.8CVSS0.00176EPSS
Exploits1References2
CVE
CVE
added 2026/05/11 4:25 p.m.23 views

CVE-2026-3609

Affected software/component: Wellbia’s XIGNCODE3 kernel driver xhunter1.sys. Vulnerability type / root cause: Privilege escalation via the IRP_MJ_REITS command interface, enabling a user process to request PROCESS_ALL_ACCESS. The issue implies insufficient access checks within the kernel driver, ...

7.8CVSS5.8AI score0.00176EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/11 4:25 p.m.8 views

CVE-2026-3609 XIGNCODE3 xhunter1.sys kernel driver contains a Privilege Escalation Vulnerability

Wellbia's XIGNCODE3 xhunter1.sys kernel driver Privilege Escalation Vulnerability provides access to IRPMJREITS command interface, which allows any user process to request a PROCESSALLACCESS. Cross reference to KVE 2023-5589 https://krcert.or.kr...

5.8AI score0.00176EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/05/11 12:0 a.m.11 views

PT-2026-39651

Wellbia's XIGNCODE3 xhunter1.sys kernel driver Privilege Escalation Vulnerability provides access to IRP MJ REITS command interface, which allows any user process to request a PROCESS ALL ACCESS. Cross reference to KVE 2023-5589 https://krcert.or.kr...

5.8AI score0.00176EPSS
Exploits1References3
GithubExploit
GithubExploit
added 2026/05/10 8:51 p.m.87 views

Exploit for CVE-2026-36980

CVE-2026-36980-Kernel-BSOD-DoS-PoC Project Date : Feb 2026 / D...

6.3AI score
Exploits1
GithubExploit
GithubExploit
added 2026/05/10 8:28 p.m.93 views

Exploit for CVE-2026-36981

CVE-2026-36981-Kernel-EoP-PoC Memory corrupt...

5.9AI score
Exploits1
Microsoft CVE
Microsoft CVE
added 2026/05/09 8:1 a.m.10 views

drm/panthor: fix for dma-fence safe access rules

...

5.5CVSS5.8AI score0.00121EPSS
Exploits0
CVE
CVE
added 2026/05/08 2:21 p.m.28 views

CVE-2026-43414

CVE-2026-43414 affects the Linux kernel SCSI driver qla2xxx (fcport handling). The issue is a double-free of a Fibre Channel port object in qla24xx_els_dcmd_iocb() via qla2x00_els_dcmd_sp_free() after kref_put(), leading to potential memory corruption and system instability or DoS as described by...

9.8CVSS5.8AI score0.0038EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.11 views

PT-2026-39071

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A NULL pointer dereference occurs in the stratix10-rsu firmware driver when Remote System Update RSU is disabled in the First Stage Boot Loader FSBL. The issue arises because the rsu sen...

5.5CVSS5.8AI score0.00116EPSS
Exploits0References13
RedhatCVE
RedhatCVE
added 2026/05/06 11:17 p.m.9 views

CVE-2026-43250

A flaw was found in the Linux kernel's ChipIdea USB Device Controller UDC driver. A local user with a malicious USB device, or a malicious USB device itself, could exploit this by reconnecting the device during an active data transfer. This improper cleanup of Direct Memory Access DMA buffers can...

7.8CVSS6.1AI score0.00129EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2026/05/06 11:28 a.m.6 views

CVE-2026-43206

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix out-of-bounds write in kfdeventpageset The kfdeventpageset function writes KFDSIGNALEVENTLIMIT 8 bytes via memset without checking the buffer size parameter. This allows unprivileged userspace to trigger an out-of...

7.8CVSS5.8AI score0.00139EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/05/06 7:40 a.m.6 views

CVE-2026-43120

In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Fix double free related to reregusermr If IBMRREREGTRANS is set during reregusermr, the umem will be released and a new one will be allocated in irdmareregmrtrans. If any step of irdmareregmrtrans fails after the new...

7.8CVSS5.7AI score0.00122EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2026/05/06 7:40 a.m.29 views

CVE-2026-43120 RDMA/irdma: Fix double free related to rereg_user_mr

In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Fix double free related to reregusermr If IBMRREREGTRANS is set during reregusermr, the umem will be released and a new one will be allocated in irdmareregmrtrans. If any step of irdmareregmrtrans fails after the new...

7.8CVSS0.00122EPSS
Exploits0References5
NVD
NVD
added 2026/05/05 8:16 p.m.9 views

CVE-2026-32603

Sandboxie is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, a local denial of service vulnerability exists in the Sandboxie kernel driver. An unprivileged process running inside a Standard Sandbox can send a malformed IOCTL to the...

8.2CVSS0.00152EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/05/05 6:57 p.m.35 views

CVE-2026-32603 Sandboxie kernel driver denial of service via malformed IOCTL from sandboxed process

Sandboxie is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, a local denial of service vulnerability exists in the Sandboxie kernel driver. An unprivileged process running inside a Standard Sandbox can send a malformed IOCTL to the...

8.2CVSS0.00152EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/05/05 12:0 a.m.8 views

PT-2026-37218

Name of the Vulnerable Software and Affected Versions Sandboxie versions prior to 1.17.3 Description A local denial of service exists in the Sandboxie kernel driver. An unprivileged process running inside a Standard Sandbox can send a malformed IOCTL Input/Output Control to the...

8.2CVSS5.8AI score0.00152EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/05/05 12:0 a.m.7 views

Sandboxie 输入验证错误漏洞

Sandboxie is an open-source isolation software based on a sandbox mechanism, developed by sandboxie-plus. Versions of Sandboxie starting from 1.17.2 and earlier contain a vulnerability related to input validation errors. This vulnerability stems from unauthorized processes sending malformed IOCTL...

8.2CVSS5.8AI score0.00152EPSS
Exploits1References2
CVE
CVE
added 2026/05/01 2:14 p.m.13 views

CVE-2026-31760

The CVE-2026-31760 issue affects the Linux kernel GPIB gpib: lpvo_usb driver, where the driver incorrectly retains references to USB devices during GPIB attach, causing a memory leak on disconnect. The root cause is not releasing those references after attaching, leading to resource retention. Th...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/04/24 2:42 p.m.20 views

CVE-2026-31578

CVE-2026-31578: Linux kernel as102_usb driver race leads to use-after-free/double-free when a device is deregistered while an open FD remains. The crash arises from freeing as102_dev_t after usb_register_dev() and before the final FD is closed; the fix defers freeing to the .release() path, ensur...

7.8CVSS5.4AI score0.00128EPSS
Exploits0References9Affected Software1
Cvelist
Cvelist
added 2026/04/24 2:35 p.m.30 views

CVE-2026-31566 drm/amdgpu: Fix fence put before wait in amdgpu_amdkfd_submit_ib

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix fence put before wait in amdgpuamdkfdsubmitib amdgpuamdkfdsubmitib submits a GPU job and gets a fence from amdgpuibschedule. This fence is used to wait for job completion. Currently, the code drops the fence...

7.8CVSS0.00126EPSS
Exploits0References6
Rows per page
Query Builder