Design/Logic Flaw

HWiNFO AMD64 Kernel driver version 8.98 and lower allows an unprivileged user to send an IOCTL to the device driver. If input and/or output buffer pointers are NULL or if these buffers' data are invalid, a NULL/invalid pointer access occurs, resulting in a Windows kernel panic aka Blue Screen. Th...

CVE-2018-8060

HWiNFO AMD64 Kernel driver version 8.98 and lower allows an unprivileged user to send an IOCTL to the device driver. If input and/or output buffer pointers are NULL or if these buffers' data are invalid, a NULL/invalid pointer access occurs, resulting in a Windows kernel panic aka Blue Screen. Th...

CVE-2018-8060

HWiNFO AMD64 Kernel driver (version 8.98 and earlier) is affected. An unprivileged user can send an IOCTL to the device driver, and if input/output buffers are NULL or data is invalid, a NULL/invalid pointer access occurs, causing a Windows kernel panic (BSOD). Affected IOCTLs are higher than 0x8...

CVE-2018-8061

CVE-2018-8061: Affects HWiNFO AMD64 Kernel driver v8.98 and earlier. An unprivileged user can send IOCTL 0x85FE2608 to the HWiNFO32 symbolic device name, enabling direct physical memory read or write. The vulnerability is rooted in the kernel driver, potentially impacting systems using affected d...

CVE-2018-8061

HWiNFO AMD64 Kernel driver version 8.98 and lower allows an unprivileged user to send IOCTL 0x85FE2608 to the device driver with the HWiNFO32 symbolic device name, resulting in direct physical memory read or write...

Microsoft Windows Multiple Vulnerabilities (KB4103716)

This host is missing a critical security update according to Microsoft KB4103716 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Windows Security Feature Bypass Vulnerability

A security feature bypass exists when Windows incorrectly validates kernel driver signatures. An attacker who successfully exploited this vulnerability could bypass security features and load improperly signed drivers into the kernel. In an attack scenario, an attacker could bypass security...

CVE-2018-9151

A NULL pointer dereference bug in the function ObReferenceObjectByHandle in the Kingsoft Internet Security 9+ kernel driver KWatch3.sys allows local non-privileged users to crash the system via IOCTL 0x80030030...

CVE-2018-9151

A NULL pointer dereference bug in the function ObReferenceObjectByHandle in the Kingsoft Internet Security 9+ kernel driver KWatch3.sys allows local non-privileged users to crash the system via IOCTL 0x80030030...

CVE-2018-9151

A NULL pointer dereference bug in the function ObReferenceObjectByHandle in the Kingsoft Internet Security 9+ kernel driver KWatch3.sys allows local non-privileged users to crash the system via IOCTL 0x80030030...

Null pointer dereference

A NULL pointer dereference bug in the function ObReferenceObjectByHandle in the Kingsoft Internet Security 9+ kernel driver KWatch3.sys allows local non-privileged users to crash the system via IOCTL 0x80030030...

Security Bulletin: NVIDIA Jetson TX1, Jetson TK1, Jetson TX2, and Tegra K1 L4T Security Updates for Multiple Vulnerabilities

Jetson and Tegra L4T contain vulnerabilities which may lead to denial of service, escalation of privileges, or information disclosure. Go to NVIDIA Product Security. Vulnerability Details The following sections summarize the potential vulnerabilities. Descriptions use CWE™ and risk assessments...

NVIDIA SHIELD TV Tegra Kernel Driver NVMAP Elevation of Privilege Vulnerability

NVIDIA SHIELD TV is a gaming console device from NVIDIA Corporation.Tegra kernel driver is one of the Tegra processor kernel drivers.NVMAP is one of the components of... A security vulnerability exists in the NVMAP of the Tegra kernel driver in NVIDIA SHIELD TV SE 6.2 and earlier versions. An...

CVE-2017-6282

NVIDIA Tegra kernel driver contains a vulnerability in NVMAP where an attacker has the ability to write an arbitrary value to an arbitrary location which may lead to an escalation of privileges. This issue is rated as high...

CVE-2017-6282

CVE-2017-6282 affects the NVIDIA Tegra kernel driver (NVMAP) where an attacker can write an arbitrary value to an arbitrary location, potentially causing privilege escalation. Documents confirm the vulnerability in the Tegra kernel driver and NVMAP component, with CVSS v3.0 scores (9.3 base, high...

Jiangmin Antivirus Denial of Service Vulnerability (CNVD-2018-03290)

Jiangmin Antivirus is a set of online antivirus software from the Chinese Jiangmin Jiangmin New Technology Company. A security vulnerability exists in the KrnlCall.sys driver file in Jiangmin Antivirus version 16.0.0.100, which is caused by the program failing to validate the input value of IOCtl...

Jiangmin Antivirus Denial of Service Vulnerability (CNVD-2018-03286)

Jiangmin Antivirus is a set of online antivirus software from the Chinese Jiangmin Jiangmin New Technology Company. A security vulnerability exists in the KrnlCall.sys driver file in Jiangmin Antivirus version 16.0.0.100, which is caused by the program failing to validate the input value of IOCtl...

CVE-2018-6769

In Jiangmin Antivirus 16.0.0.100, the driver file KrnlCall.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x99008020...

Race condition

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, in the SPCom kernel driver, a race condition exists when creating a channel...

CVE-2017-15847

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, in the SPCom kernel driver, a race condition exists when creating a channel...