FinalWire AIDA64 Code Execution Vulnerability

FinalWire AIDA64 is a system information, diagnostic and auditing program from the Hungarian company FinalWire that runs on the Microsoft Windows platform. A security vulnerability exists in the kerneld.sys file in FinalWire AIDA64 versions prior to 5.99. An attacker can exploit the vulnerability...

CVE-2019-7244

An issue was discovered in kerneld.sys in AIDA64 before 5.99. The vulnerable driver exposes a wrmsr instruction via IOCTL 0x80112084 and does not properly filter the Model Specific Register MSR. Allowing arbitrary MSR writes can lead to Ring-0 code execution and escalation of privileges...

CVE-2019-7240

An issue was discovered in WinRing0x64.sys in Moo0 System Monitor 1.83. The vulnerable driver exposes a wrmsr instruction via IOCTL 0x9C402088 and does not properly filter the Model Specific Register MSR. Allowing arbitrary MSR writes can lead to Ring-0 code execution and escalation of privileges...

CVE-2020-10829

An issue was discovered on Samsung mobile devices with O8.0, P9.0, and Q10.0 Broadcom chipsets software. A kernel driver heap overflow leads to arbitrary code execution. The Samsung ID is SVE-2019-15880 March 2020...

CVE-2019-20542

An issue was discovered on Samsung mobile devices with N7.1, O8.x, and P9.0 Exynos chipsets software. There is a stack overflow in the kernel driver. The Samsung ID is SVE-2019-15034 November 2019...

CVE-2019-20542

An issue was discovered on Samsung mobile devices with N7.1, O8.x, and P9.0 Exynos chipsets software. There is a stack overflow in the kernel driver. The Samsung ID is SVE-2019-15034 November 2019...

Heap overflow

An issue was discovered on Samsung mobile devices with O8.0, P9.0, and Q10.0 Broadcom chipsets software. A kernel driver heap overflow leads to arbitrary code execution. The Samsung ID is SVE-2019-15880 March 2020...

Stack overflow

An issue was discovered on Samsung mobile devices with N7.1, O8.x, and P9.0 Exynos chipsets software. There is a stack overflow in the kernel driver. The Samsung ID is SVE-2019-15034 November 2019...

CVE-2019-20542

An issue was discovered on Samsung mobile devices with N7.1, O8.x, and P9.0 Exynos chipsets software. There is a stack overflow in the kernel driver. The Samsung ID is SVE-2019-15034 November 2019...

CVE-2019-20542

CVE-2019-20542 affects Samsung mobile devices running Android N (7.1), O (8.x), and P (9.0) on Exynos chipsets. The issue is a kernel driver stack overflow. No exploit details or specific vulnerable components/version numbers are provided beyond this description. No remediation or patch version i...

CVE-2020-10829

An issue was discovered on Samsung mobile devices with O8.0, P9.0, and Q10.0 Broadcom chipsets software. A kernel driver heap overflow leads to arbitrary code execution. The Samsung ID is SVE-2019-15880 March 2020...

Unspecified Vulnerability in Rivet Killer Control Center (CNVD-2020-19854)

Rivet Killer Control Center is a computer performance optimization and control software. The program mainly supports application checking and setting priorities. A security vulnerability has been identified in Rivet Killer Control Center, Rivet Killer Control Center prior to 2.1.1352.IOCTL 0x1200...

CVE-2019-15662

An issue was discovered in Rivet Killer Control Center before 2.1.1352. IOCTL 0x120444 in KfeCo10X64.sys fails to validate an offset passed as a parameter during a memory operation, leading to an arbitrary read primitive that can be used as part of a chain to escalate privileges...

kernel: insufficient input validation in kernel mode driver in Intel i915 graphics leads to privilege escalation

A flaw was found in the Linux kernel's implementation of GVT-g which allowed an attacker with access to a 'passed through' Intel i915 graphics card to possibly access resources allocated to other virtual machines, crash the host, or possibly corrupt memory leading to privilege escalation...

CVE-2019-10567

CVE-2019-10567 affects Qualcomm Adreno GPU kernel driver (KGSL) where a randomized scratch buffer in the global shared mappings is used to store the RPTR for the ringbuffer. The attack leverages the RPTR read from scratch to influence ringbuffer space checks, allowing an attacker-controlled RPTR ...

Android - ashmem Readonly Bypasses via remap_file_pages() and ASHMEM_UNPIN

This bug report describes two ways in which an attacker can modify the contents of a read-only ashmem fd. I'm not sure at this point what the most interesting user of ashmem is in the current Android release, but there are various users, including Chrome and a bunch of utility classes. In AOSP...

CVE-2018-10902

It was found that the raw midi kernel driver does not protect against concurrent access which leads to a double realloc double free in sndrawmidiinputparams and sndrawmidioutputstatus which are part of sndrawmidiioctl handler in rawmidi.c file. A malicious local attacker could possibly use this f...

The vulnerability in the Marvell WiFi kernel driver from the `marvell/mwifiex/tdls.c` file in the Linux operating system allows a hacker to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability in the Marvell WiFi kernel driver from the marvell/mwifiex/tdls.c file in the Linux operating system involves writing beyond the memory buffer boundaries. Exploiting this vulnerability allows a remote attacker to access confidential data, compromise its integrity, and cause...

CVE-2019-14604

Null pointer dereference in the FPGA kernel driver for IntelR QuartusR Prime Pro Edition before version 19.3 may allow an authenticated user to potentially enable denial of service via local access...

Input validation

Improper conditions check in the Linux kernel driver for the IntelR FPGA SDK for OpenCLTM Pro Edition before version 19.4 may allow an authenticated user to potentially enable denial of service via local access...