367 matches found
CVE-2024-50066
In the Linux kernel, the following vulnerability has been resolved: mm/mremap: fix movenormalpmd/retractpagetables race In mremap, movepagetables looks at the type of the PMD entry and the specified address range to figure out by which method the next chunk of page table entries should be moved. ...
CVE-2024-43570 Windows Kernel Elevation of Privilege Vulnerability
...
CVE-2024-43570 Windows Kernel Elevation of Privilege Vulnerability
...
CVE-2024-23716
In DevmemIntPFNotify of devicememserver.c, there is a possible use-after-free due to a race condition. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2024-23716
In CVE-2024-23716, a race condition in DevmemIntPFNotify within devicemem_server.c can trigger a use-after-free, enabling local privilege escalation in the kernel with no extra execution privileges or user interaction required. The linked Red Hat and Android bulletin data corroborate a kernel-lev...
CVE-2024-33027
Memory corruption can occur when arbitrary user-space app gains kernel level privilege to modify DDR memory by corrupting the GPU page table...
PT-2024-25072 · Qualcomm · 205 Mobile Platform Firmware +86
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: Memory corruption can occur when an arbitrary user-space app gains kernel-level privilege to modify DDR memory by corrupting the GPU page table. Recommendations: At the moment, ther...
Important: Red Hat Security Advisory: kernel-rt security update
An update for kernel-rt is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update as...
CVE-2024-34725
In DevmemIntUnexportCtx of devicememserver.c, there is a possible arbitrary code execution due to a race condition. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2024-34726
In PVRSRVMMap of pvrbridgek.c, there is a possible arbitrary code execution due to a logic error in the code. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2024-23695
In CacheOpPMRExec of cachekm.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation...
PT-2024-23978 · Google +1 · Android +1
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue is related to a logic error in the code of devicemem server.c, specifically in the DevmemIntFreeDefBackingPage function. This error could lead...
PT-2024-23981 · Unknown · Pvrsrvrgxkickta3Dkm
Name of the Vulnerable Software and Affected Versions: PVRSRVRGXKickTA3DKM affected versions not specified Description: The issue is related to improper input validation in the PVRSRVRGXKickTA3DKM of rgxta3d.c, which could lead to arbitrary code execution. This could result in local escalation of...
CVE-2024-27828
CVE-2024-27828 describes a memory-handling issue in Apple OS components that could allow an app to execute arbitrary code with kernel privileges. The vulnerability is addressed with patches in visionOS 1.2, watchOS 10.5, tvOS 17.5, iOS 17.5 and iPadOS 17.5. The available description indicates a l...
Apple iOS 和 iPadOS 安全漏洞
Apple iOS and Apple iPadOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices, and Apple iPadOS is an operating system for the iPad tablet computer. A security vulnerability exists in Apple iOS and iPadOS. An attacker could use this vulnerability to execute...
PT-2024-4327 · Apple · Macos Sonoma +1
Name of the Vulnerable Software and Affected Versions: macOS Sonoma versions prior to 14.5 Description: The issue allows an app to execute arbitrary code with kernel privileges. It is related to a buffer overflow in the IOAESAccelerator component of the UDF file system in Mac OS, which can be...
Microsoft Windows 10.0.17763.5458 - Kernel Privilege Escalation Exploit
Exploit Title : Microsoft Windows 10.0.17763.5458 - Kernel Privilege Escalation Exploit Author: E1 Coders CVE: CVE-2024-21338 require 'msf/core' class MetasploitModule 'CVE-2024-21338 Exploit', 'Description' = 'This module exploits a vulnerability in FooBar version 1.0. It may lead to remote code...
Microsoft Windows 10.0.17763.5458 - Kernel Privilege Escalation
Exploit Title : Microsoft Windows 10.0.17763.5458 - Kernel Privilege Escalation Exploit Author: E1 Coders CVE: CVE-2024-21338 require 'msf/core' class MetasploitModule 'CVE-2024-21338 Exploit', 'Description' = 'This module exploits a vulnerability in FooBar version 1.0. It may lead to...
CVE-2023-42974
A race condition was addressed with improved state handling. This issue is fixed in macOS Monterey 12.7.2, macOS Ventura 13.6.3, iOS 17.2 and iPadOS 17.2, iOS 16.7.3 and iPadOS 16.7.3, macOS Sonoma 14.2. An app may be able to execute arbitrary code with kernel privileges...
Privilege escalation
Windows Kernel Elevation of Privilege Vulnerability...