CVE-2023-32155

Tesla Model 3 bcmdhd Out-Of-Bounds Write Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected Tesla Model 3 vehicles. An attacker must first obtain the ability to execute code on the wifi subsystem in order to exploit this...

BIT-TENSORFLOW-2021-29551 OOB read in `MatrixTriangularSolve`

TensorFlow is an end-to-end open source platform for machine learning. The implementation of MatrixTriangularSolvehttps://github.com/tensorflow/tensorflow/blob/8cae746d8449c7dda5298327353d68613f16e798/tensorflow/core/kernels/linalg/matrixtriangularsolveopimpl.hL160-L240 fails to terminate kernel...

CVE-2023-41060

A type confusion issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14, iOS 17 and iPadOS 17. A remote user may be able to cause kernel code execution...

PT-2024-1080 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to a security-feature bypass vulnerability in the Hypervisor-Protected Code Integrity HVCI feature of the Windows operating system. This vulnerability allows attackers ...

PT-2023-28399 · Smr · Smr

Name of the Vulnerable Software and Affected Versions: SMR versions prior to Nov-2023 Release 1 Description: The issue is related to improper input validation with the USB Gadget Interface, allowing a physical attacker to execute arbitrary code in the Kernel. Recommendations: For versions prior t...

CVE-2023-40431

The issue was addressed with improved memory handling. This issue is fixed in iOS 17 and iPadOS 17. An app may be able to execute arbitrary code with kernel privileges...

CVE-2023-20564

Insufficient validation in the IOCTL Input Output Control input buffer in AMD Ryzen™ Master may permit a privileged attacker to perform memory reads/writes potentially leading to a loss of confidentiality or arbitrary kernel execution...

CVE-2023-20564

Insufficient validation in the IOCTL Input Output Control input buffer in AMD Ryzen™ Master may permit a privileged attacker to perform memory reads/writes potentially leading to a loss of confidentiality or arbitrary kernel execution...

Input validation

Insufficient validation in the IOCTL Input Output Control input buffer in AMD Ryzen™ Master may permit a privileged attacker to perform memory reads/writes potentially leading to a loss of confidentiality or arbitrary kernel execution...

CVE-2023-20564

Insufficient validation in the IOCTL Input Output Control input buffer in AMD Ryzen™ Master may permit a privileged attacker to perform memory reads/writes potentially leading to a loss of confidentiality or arbitrary kernel execution...

CVE-2023-20564

Insufficient validation in the IOCTL Input Output Control input buffer in AMD Ryzen™ Master may permit a privileged attacker to perform memory reads/writes potentially leading to a loss of confidentiality or arbitrary kernel execution...

CVE-2023-20564

The CVE-2023-20564 entry concerns AMD Ryzen Master Driver IOCTL input validation. Connected sources detail vulnerable component AMDRyzenMasterDriverV17.sys and two IOCTLs: 0x81112F08 (physical memory read) and 0x81112F0C (physical memory write), with insufficient validation of addresses, sizes, a...

PT-2023-17463 · Amd · Amd Ryzen Master

Name of the Vulnerable Software and Affected Versions: AMD Ryzen Master affected versions not specified Description: Insufficient validation in the IOCTL input buffer may permit a privileged attacker to perform memory reads/writes, potentially leading to a loss of confidentiality or arbitrary...

CVE-2023-20562

Insufficient validation in the IOCTL Input Output Control input buffer in AMD uProf may allow an authenticated user to load an unsigned driver potentially leading to arbitrary kernel execution...

CVE-2023-20562

Insufficient validation in the IOCTL Input Output Control input buffer in AMD uProf may allow an authenticated user to load an unsigned driver potentially leading to arbitrary kernel execution...

Input validation

Insufficient validation in the IOCTL Input Output Control input buffer in AMD uProf may allow an authenticated user to load an unsigned driver potentially leading to arbitrary kernel execution...

CVE-2023-20564

Insufficient validation in the IOCTL Input Output Control input buffer in AMD RyzenTM Master may permit a privileged attacker to perform memory reads and writes, potentially leading to a loss of confidentiality or arbitrary kernel execution. Mitigation Please contact AMD support for updates...

CVE-2023-20562

Insufficient validation in the IOCTL Input Output Control input buffer in AMD uProf may allow an authenticated user to load an unsigned driver, potentially leading to arbitrary kernel execution. Mitigation Please contact AMD support for updates...

CVE-2023-20562

CVE-2023-20562 involves AMD μProf (AMD uProf) where there is insufficient validation in the IOCTL input buffer. The impact described across sources is that an authenticated user may load an unsigned driver, potentially enabling arbitrary kernel execution. Connected materials explicitly discuss ex...

CVE-2023-20562

Insufficient validation in the IOCTL Input Output Control input buffer in AMD uProf may allow an authenticated user to load an unsigned driver potentially leading to arbitrary kernel execution...