Lucene search
K

56 matches found

Cvelist
Cvelist
added 2024/08/16 2:17 p.m.17 views

CVE-2024-4763

An insecure driver vulnerability was reported in Lenovo Display Control Center LDCC and Lenovo Accessories and Display Manager LADM that could allow a local attacker to escalate privileges to kernel...

7.8CVSS0.00164EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2023/12/12 6:15 p.m.7 views

CVE-2023-35633

Windows Kernel Elevation of Privilege Vulnerability...

7.8CVSS7.2AI score0.08698EPSS
Exploits0References3Affected Software10
Positive Technologies
Positive Technologies
added 2023/12/01 12:0 a.m.5 views

PT-2023-8469 · Imagination Technologies · Powervr Gpu Driver

Name of the Vulnerable Software and Affected Versions: PowerVR GPU driver affected versions not specified Description: The issue is related to a use after free in the RGXUnbackingZSBuffer function of the PowerVR GPU driver, which could lead to arbitrary code execution. This might result in local...

9.8CVSS9.2AI score0.00414EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2023/12/01 12:0 a.m.4 views

PT-2023-8472 · Imagination Technologies · Powervr Gpu Driver

Name of the Vulnerable Software and Affected Versions: devicemem server.c affected versions not specified Description: The issue is related to a use after free in the DevmemIntMapPMR function of devicemem server.c, which could lead to arbitrary code execution. This might result in local escalatio...

9.8CVSS9.2AI score0.00414EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2023/12/01 12:0 a.m.8 views

PT-2023-8468 · Unknown · Powervr Gpu Driver

Name of the Vulnerable Software and Affected Versions: PowerVR GPU driver versions affected versions not specified Description: The issue is related to a buffer overflow in the PowerVR GPU driver, specifically in the PMR ReadBytes function for Android and ChromeOS, and an out of bounds write in t...

9.8CVSS8.9AI score0.00414EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2023/12/01 12:0 a.m.6 views

PT-2023-8464 · Imagination Technologies · Powervr Gpu Driver

Name of the Vulnerable Software and Affected Versions: PowerVR GPU driver versions affected versions not specified Description: The issue is related to a race condition in the DevmemIntAcquireRemoteCtx function of the PowerVR GPU driver, which can lead to arbitrary code execution and local...

9.8CVSS9.5AI score0.00414EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2023/07/24 4:15 p.m.29 views

CVE-2023-33952

A double-free vulnerability was found in handling vmwbufferobject objects in the vmwgfx driver in the Linux kernel. This issue occurs due to the lack of validating the existence of an object prior to performing further free operations on the object, which may allow a local privileged user to...

6.7CVSS6.9AI score0.00465EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:19 a.m.4 views

SUSE CVE-2019-2215

A use-after-free in binder.c allows an elevation of privilege from an application to the Linux Kernel. No user interaction is required to exploit this vulnerability, however exploitation does require either the installation of a malicious local application or a separate vulnerability in a network...

7.8CVSS7.8AI score0.72105EPSS
Exploits27References3
OSV
OSV
added 2022/12/15 7:15 p.m.3 views

CVE-2022-46701

The issue was addressed with improved bounds checks. This issue is fixed in iOS 16.2 and iPadOS 16.2, macOS Ventura 13.1, tvOS 16.2. Connecting to a malicious NFS server may lead to arbitrary code execution with kernel privileges...

7.8CVSS6.3AI score0.00323EPSS
Exploits0References6
OSV
OSV
added 2022/11/01 8:15 p.m.5 views

CVE-2022-32947

The issue was addressed with improved memory handling. This issue is fixed in iOS 16.1 and iPadOS 16, macOS Ventura 13, watchOS 9.1. An app may be able to execute arbitrary code with kernel privileges...

7.8CVSS6AI score0.00582EPSS
Exploits0References3
Cvelist
Cvelist
added 2022/10/14 12:0 a.m.22 views

CVE-2022-20397

In SitRilClientOnResponse of SitRilSe.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

8AI score0.00133EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/07/20 12:0 a.m.4 views

PT-2022-21504 · Apple · Macos Monterey +3

Name of the Vulnerable Software and Affected Versions: iOS versions prior to 15.6 iPadOS versions prior to 15.6 macOS Monterey versions prior to 12.5 Description: The issue allows an app to potentially execute arbitrary code with kernel privileges due to insufficient checks. This could lead to...

7.8CVSS7.5AI score0.00566EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2022/06/30 9:7 p.m.2 views

kernel: buffer overflow in IPsec ESP transformation code

A heap buffer overflow flaw was found in IPsec ESP transformation code in net/ipv4/esp4.c and net/ipv6/esp6.c. This flaw allows a local attacker with a normal user privilege to overwrite kernel heap objects and may cause a local privilege escalation threat...

7.8CVSS6.8AI score0.05524EPSS
Exploits2References5
OSV
OSV
added 2022/06/01 12:0 a.m.7 views

PUB-A-222091980

In rcucblistdequeue of rcusegcblist.c, there is a possible use-after-free due to improper locking. This could lead to local escalation of privilege in the kernel with System execution privileges needed. User interaction is not needed for exploitation...

7.2CVSS6.6AI score0.00123EPSS
Exploits0References3
NVD
NVD
added 2022/05/10 9:15 p.m.23 views

CVE-2022-20118

In ionioctl and related functions of ion.c, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid...

7CVSS0.00083EPSS
Exploits0References1
Prion
Prion
added 2021/10/25 2:15 p.m.16 views

Out-of-bounds

In TBD of TBD, there is a possible out of bounds write due to improper locking. This could lead to local escalation of privilege in the kernel with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

7.2CVSS6.6AI score0.0012EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2021/03/12 12:0 a.m.40 views

Google Android fts_driver_test_write Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of Google Android. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

5.5CVSS3.1AI score0.00204EPSS
Exploits0References1
OSV
OSV
added 2020/09/17 4:15 p.m.5 views

DEBIAN-CVE-2020-0404

In uvcscanchainforward of uvcdriver.c, there is a possible linked list corruption due to an unusual root cause. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

5.5CVSS6.7AI score0.00232EPSS
Exploits0References1
OSV
OSV
added 2020/08/25 9:15 p.m.4 views

CVE-2020-17402

This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 15.1.4 47270. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists...

6.5CVSS6.4AI score0.00475EPSS
Exploits0References2
Hacker One
Hacker One
added 2020/07/26 4:18 p.m.20 views

PlayStation: SOCK_RAW sockets reachable from Webkit process allows triggering double free in IP6_EXTHDR_CHECK

Summary Memory corruption can be achieved by sending fragmented IPv6 packets to loopback interface due to poor and inconsistent use of IP6EXTHDRCHECK. The macro IP6EXTHDRCHECK can free the mbuf if the packet is sent to loopback interface. This fact is not considered in dest6input, frag6input and...

0.7AI score
Exploits0
Rows per page
Query Builder