Lucene search
K

6634 matches found

Cvelist
Cvelist
added 2024/07/02 12:0 a.m.21 views

CVE-2022-25480

Vulnerability in Realtek RtsPer driver for PCIe Card Reader RtsPer.sys before 10.0.22000.21355 and Realtek RtsUer driver for USB Card Reader RtsUer.sys before 10.0.22000.31274 allows writing to kernel memory beyond the SystemBuffer of the IRP...

0.00191EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/07/02 12:0 a.m.4 views

Various Realtek products Security breaches

Realtek RtsPer driver for PCIe Card Reader and Realtek RtsUer driver for USB Card Reader are both a card reader driver from Realtek Semiconductor Realtek of China. A security vulnerability exists in several Realtek products that originates in kernel memory outside of the SystemBuffer, which allow...

7.8CVSS6.6AI score0.00191EPSS
Exploits0References4
CVE
CVE
added 2024/07/02 12:0 a.m.53 views

CVE-2022-25480

CVE-2022-25480 affects Realtek Realtek RtsPer.sys (PCIe Card Reader) and RtsUer.sys (USB Card Reader). The issue is a memory/write vulnerability that allows writing to kernel memory beyond the SystemBuffer of the IRP due to a buffer overflow in these drivers. Affected versions are RtsPer.sys prio...

7.8CVSS6.8AI score0.00191EPSS
Exploits0References4Affected Software2
Positive Technologies
Positive Technologies
added 2024/07/02 12:0 a.m.7 views

PT-2024-26009 · Smr · Smr

Name of the Vulnerable Software and Affected Versions: SMR versions prior to Jul-2024 Release 1 Description: The issue allows local attackers to read kernel memory address due to exposure of sensitive information in the proc file system. Recommendations: For versions prior to Jul-2024 Release 1,...

5.5CVSS6.4AI score0.00151EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2024/06/30 2:0 p.m.3 views

clk: zynq: Prevent null pointer dereference caused by kmalloc failure

...

5.5CVSS7.3AI score0.00273EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/06/26 12:0 a.m.33 views

Nutanix AOS : Multiple Vulnerabilities (NXSA-AOS-6.5.6)

The version of AOS installed on the remote host is prior to 6.5.6. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AOS-6.5.6 advisory. - CVE-2023-38546 is a cookie injection vulnerability in the curleasyduphandle, a function in libcurl that duplicates easy handles...

9.8CVSS8.2AI score0.78483EPSS
Exploits23References14
OSV
OSV
added 2024/06/25 3:15 p.m.0 views

DEBIAN-CVE-2024-39301

In the Linux kernel, the following vulnerability has been resolved: net/9p: fix uninit-value in p9clientrpc Syzbot with the help of KMSAN reported the following error: BUG: KMSAN: uninit-value in trace9pclientres include/trace/events/9p.h:146 inline BUG: KMSAN: uninit-value in...

5.5CVSS5.7AI score0.00228EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2024/06/22 4:9 a.m.2 views

SUSE CVE-2022-48730

In the Linux kernel, the following vulnerability has been resolved: dma-buf: heaps: Fix potential spectre v1 gadget It appears like nr could be a Spectre v1 gadget as it's supplied by a user and used as an array index. Prevent the contents of kernel memory from being leaked to userspace via...

5.5CVSS7.5AI score0.00257EPSS
Exploits0References12
Debian CVE
Debian CVE
added 2024/06/20 11:13 a.m.14 views

CVE-2022-48731

In the Linux kernel, the following vulnerability has been resolved: mm/kmemleak: avoid scanning potential huge holes When using devmrequestfreememregion and devmmemremappages to add ZONEDEVICE memory, if requested free mem region's end pfn were hugee.g., 0x400000000, the nodeendpfn will be also...

5.5CVSS5.3AI score0.00168EPSS
Exploits0
Cvelist
Cvelist
added 2024/06/20 11:13 a.m.23 views

CVE-2022-48730 dma-buf: heaps: Fix potential spectre v1 gadget

In the Linux kernel, the following vulnerability has been resolved: dma-buf: heaps: Fix potential spectre v1 gadget It appears like nr could be a Spectre v1 gadget as it's supplied by a user and used as an array index. Prevent the contents of kernel memory from being leaked to userspace via...

0.00257EPSS
Exploits0References4
OSV
OSV
added 2024/06/19 2:15 p.m.6 views

UBUNTU-CVE-2024-38592

In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Init ddpcomp with devmkcalloc In the case where connroutes is true we allocate an extra slot in the ddpcomp array but mtkdrmcrtccreate never seemed to initialize it in the test case I ran. For me, this caused a late...

5.5CVSS6.5AI score0.00225EPSS
Exploits0References11
RedhatCVE
RedhatCVE
added 2024/06/12 12:27 a.m.20 views

CVE-2023-52751

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix use-after-free in smb2queryinfocompound The following UAF was triggered when running fstests generic/072 with KASAN enabled against Windows Server 2022 and mount options...

7.1CVSS6.9AI score0.00243EPSS
Exploits0References4
Amazon
Amazon
added 2024/06/12 12:0 a.m.13 views

Medium: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: netlink: annotate lockless accesses to nlk-maxrecvmsglen CVE-2023-53824 In the Linux kernel, the following vulnerability has been resolved: md: fix kmemleak of rdev-serial CVE-2024-26900 In the Linux kernel, the...

7.8CVSS7AI score0.00733EPSS
Exploits0
CVE
CVE
added 2024/06/10 8:56 p.m.90 views

CVE-2024-27840

CVE-2024-27840 affects Apple platforms including macOS (Ventura 13.x, Monterey 12.x), iOS/iPadOS, tvOS, visionOS, and watchOS. The issue is described as a memory handling problem where an attacker who already has kernel code execution may bypass kernel memory protections. The vulnerability is fix...

7.5CVSS6.3AI score0.00252EPSS
Exploits1References22Affected Software6
SUSE CVE
SUSE CVE
added 2024/06/08 2:58 a.m.6 views

SUSE CVE-2024-26943

In the Linux kernel, the following vulnerability has been resolved: nouveau/dmem: handle kcalloc allocation failure The kcalloc in nouveaudmemevictchunk will return null if the physical memory has run out. As a result, if we dereference srcpfns, dstpfns or dmaaddrs, the null pointer dereference...

4.7CVSS6.2AI score0.00225EPSS
Exploits0References29
RedHat Linux
RedHat Linux
added 2024/06/05 10:5 a.m.4 views

kernel: media: dvbdev: Fix memory leak in dvb_media_device_free()

A flaw was found in the Linux kernel. A missing memory release in the dvbmediadevicefree function in the drivers/media/dvb-core/dvbdev.c file can result in a memory leak...

5.5CVSS6.6AI score0.00242EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/06/05 10:5 a.m.4 views

kernel: Information disclosure in vhost/vhost.c:vhost_new_msg()

A vulnerability was found in vhostnewmsg in drivers/vhost/vhost.c in the Linux kernel, which does not properly initialize memory in messages passed between virtual guests and the host operating system in the vhost/vhost.c:vhostnewmsg function. This issue can allow local privileged users to read...

5.5CVSS6.6AI score0.00236EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/06/05 12:36 a.m.6 views

kernel: do_sys_name_to_handle(): use kzalloc() to fix kernel-infoleak

In the Linux kernel, the following vulnerability has been resolved: dosysnametohandle: use kzalloc to fix kernel-infoleak syzbot identified a kernel information leak vulnerability in dosysnametohandle and issued the following report 1. 1 "BUG: KMSAN: kernel-infoleak in instrumentcopytouser...

5.5CVSS6.5AI score0.00828EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/06/05 12:36 a.m.2 views

kernel: Information disclosure in vhost/vhost.c:vhost_new_msg()

A vulnerability was found in vhostnewmsg in drivers/vhost/vhost.c in the Linux kernel, which does not properly initialize memory in messages passed between virtual guests and the host operating system in the vhost/vhost.c:vhostnewmsg function. This issue can allow local privileged users to read...

5.5CVSS6.6AI score0.00236EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/06/04 1:1 p.m.3 views

SUSE CVE-2021-21781

An information disclosure vulnerability exists in the ARM SIGPAGE functionality of Linux Kernel v5.4.66 and v5.4.54. The latest version 5.11-rc4 seems to still be vulnerable. A userland application can read the contents of the sigpage, which can leak kernel memory contents. An attacker can read a...

4CVSS5.1AI score0.00533EPSS
Exploits1References17
Rows per page
Query Builder