102 matches found
CVE-2022-43662 Kernel subsystem in kernel_liteos_a has a kernel stack overflow vulnerability when call SysTimerGettime.
Kernel subsystem within OpenHarmony-v3.1.4 and prior versions in kernelliteosa has a kernel stack overflow vulnerability when call SysTimerGettime. 4 bytes padding data from kernel stack are copied to user space incorrectly and leaked...
CVE-2022-41802 Kernel subsystem in kernel_liteos_a has a kernel stack overflow vulnerability when call SysClockGetres.
Kernel subsystem within OpenHarmony-v3.1.4 and prior versions in kernelliteosa has a kernel stack overflow vulnerability when call SysClockGetres. 4 bytes padding data from kernel stack are copied to user space incorrectly and leaked...
CVE-2022-41802
OpenHarmony kernel_liteos_a (OpenHarmony v3.1.4 and earlier) is affected by a kernel stack overflow when SysClockGetres is called. The issue leaks 4 bytes of padding data from the kernel stack to user space. The vulnerability is documented across multiple sources with affected versions and relate...
CVE-2022-41113
Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability...
CVE-2022-41113
Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability...
CVE-2022-41113
Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability...
CVE-2022-41113 Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability
...
CVE-2022-41113 Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability
...
PT-2022-5656 · Microsoft · Windows Win32 Kernel Subsystem +1
Name of the Vulnerable Software and Affected Versions: Windows Win32 Kernel Subsystem affected versions not specified Description: The issue is related to insufficient access control in the Windows Win32 Kernel Subsystem, allowing an attacker to elevate their privileges. This can impact the syste...
CVE-2022-38050
Win32k Elevation of Privilege Vulnerability...
Apple iOS和Apple iPadOS 授权问题漏洞
Apple iOS and Apple iPadOS are products of Apple Inc.Apple iOS is an operating system developed for mobile devices.Apple iPadOS is an operating system for iPad tablets.Apple iOS 14.7 and iPadOS 14.7 are vulnerable to an authorization issue in the OS Kernel subsystem logic. Apple iOS 14.7 and iPad...
Apple tvOS 输入验证错误漏洞
Apple tvOS is a smart TV operating system from Apple, Inc. tvOS suffers from an input validation error vulnerability that originates from insufficient user-supplied input validation in the operating system kernel subsystem. A remote attacker could exploit this vulnerability to send a specially...
kernel: use-after-free in kernel midi subsystem
A flaw was found in the Linux kernel’s implementation of MIDI, where an attacker with a local account and the permissions to issue ioctl commands to midi devices could trigger a use-after-free issue. A write to this specific memory while freed and before use causes the flow of execution to change...
PT-2021-2027 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to errors in privilege management within the Win32k component of Microsoft Windows operating systems. It allows an attacker to potentially elevate their privileges...
kernel: out of bounds write in function i2c_smbus_xfer_emulated in drivers/i2c/i2c-core-smbus.c
An out of bounds OOB memory access flaw was found in i2csmbusxferemulated in drivers/i2c/i2c-core-smbus.c in I2C subsystem. A read request for length data-block0 greater than 'I2CSMBUSBLOCKMAX + 1' may cause underlying I2C driver write out of array's boundary. This could allow a local attacker wi...
Intel Converged Security and Management Engine and Intel Server Platform Services Kernel subsystem authorization issue vulnerability
Intel Converged Security and Management Engine CSME and Intel Server Platform Services SPS are products of Intel Corporation.Intel Converged Security and Management Engine is a security management engine.Intel Server Platform Services is a server platform service program. Intel Converged Security...
CVE-2018-12192
Logic bug in Kernel subsystem in Intel CSME before version 11.8.60, 11.11.60, 11.22.60 or 12.0.20, or IntelR Server Platform Services before version SPSE504.00.04.393.0 may allow an unauthenticated user to potentially bypass MEBx authentication via physical access...
CVE-2018-1009
An elevation of privilege vulnerability exists when Windows improperly handles objects in memory and incorrectly maps kernel memory, aka "Microsoft DirectX Graphics Kernel Subsystem Elevation of Privilege Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012,...
Microsoft DirectX Graphics Kernel Subsystem Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists when Windows improperly handles objects in memory and incorrectly maps kernel memory. In a local attack scenario, an attacker could exploit this vulnerability by running a specially crafted application to take control over the affected system. An...
CVE-2017-0507
An elevation of privilege vulnerability in the kernel ION subsystem could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing th...