ARM Mali GPU Kernel Driver < r32p0 / < r37p0 Use After Free (CVE-2022-28348)

The version of the Mali GPU Kernel Driver installed on the remote system is prior to r32p0 running on Midgard architecture or prior to r37p0 running on Bifrost or Valhall architecture. It is, therefore affected by a use-after-free error. A non-privileged user can make improper operations on GPU...

ARM Mali GPU Kernel Driver < r43p0 Use After Free (CVE-2023-28147)

The version of the Mali GPU Kernel Driver installed on the remote system is prior to r43p0 running on Midgard, Bifrost, Valhall or 5th Gen architecture. It is, therefore affected by a use-after-free error. A non-privileged user can make improper GPU processing operations to gain access to already...

CISA Adds One Known Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2021-29256 Arm Mali GPU Kernel Driver Use-After-Free Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose...

VulnCheck KEV: CVE-2021-29256

Arm Mali GPU Kernel Driver contains a use-after-free vulnerability that may allow a non-privileged user to gain root privilege and/or disclose information...

The vulnerability of the saa7134_finidev() function in the drivers/media/pci/saa7134/saa7134-core.c file of the Philips SAA7134 driver for the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the saa7134finidev function in the driver drivers/media/pci/saa7134/saa7134-core.c file of the Philips SAA7134 kernel for the Linux operating system is related to the reutilization of a resource that was previously freed due to competitive access to the resource i.e., in a...

Exploit for Use After Free in Arm Avalon_Gpu_Kernel_Driver

Exploit for CVE-2022-46395 to run on FireTV 2nd gen Cube Thi...

Arm Mali GPU Kernel Driver < r43p0 Information Exposure (CVE-2023-26083)

The version of the Mali GPU Kernel Driver installed on the remote system is prior to r43p0 running on Migard, Bifrost, Valhall or 5th Gen architecture. It is, therefore, affected by an information disclosure vulnerability. A non-privileged user can make valid GPU processing operations that expose...

Windows 11 22h2 - Kernel Privilege Elevation Exploit

// Exploit Title: Windows 11 22h2 - Kernel Privilege Elevation // country: Iran // Exploit Author: Amirhossein Bahramizadeh // Category : webapps // Vendor Homepage: // Tested on: Windows/Linux // CVE : CVE-2023-28293 include include // The vulnerable driver file name const char drivername =...

The vulnerability of the 6LoWPAN kernel driver of the RIOT operating system, which allows a hacker to cause a service failure.

The vulnerability of the 6LoWPAN kernel driver in the RIOT operating system is related to pointer arithmetic errors. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

CVE-2021-0701

In PVRSRVBridgeSyncPrimOpCreate of the PowerVR kernel driver, a missing size check means there is a possible integer overflow that could allow out-of-bounds heap access. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed...

CVE-2021-0945

In PMRCreate of the PowerVR kernel driver, a missing bounds check means it is possible to overwrite heap memory via PhysmemNewRamBackedPMR. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

Integer overflow

In PVRSRVBridgeSyncPrimOpCreate of the PowerVR kernel driver, a missing size check means there is a possible integer overflow that could allow out-of-bounds heap access. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed...

Out-of-bounds

In PMRCreate of the PowerVR kernel driver, a missing bounds check means it is possible to overwrite heap memory via PhysmemNewRamBackedPMR. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2021-0945

CVE-2021-0945 concerns the PowerVR kernel driver (Imagination Technologies) where a missing bounds check in PMRCreate can overwrite heap memory via PhysmemNewRamBackedPMR. This vulnerability could enable local escalation of privilege with no extra execution privileges required and no user interac...

CVE-2021-0701

In PVRSRVBridgeSyncPrimOpCreate of the PowerVR kernel driver, a missing size check means there is a possible integer overflow that could allow out-of-bounds heap access. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed...

PT-2023-12017 · Imagination Technologies · Powervr Kernel Driver

Name of the Vulnerable Software and Affected Versions: PowerVR kernel driver affected versions not specified Description: The issue is related to a missing size check in the PVRSRVBridgeSyncPrimOpCreate function of the PowerVR kernel driver, which could lead to an integer overflow and out-of-boun...

CVE-2021-0701

Summary: CVE-2021-0701 involves the PowerVR kernel driver, specifically the PVRSRVBridgeSyncPrimOpCreate function, where a missing size check can cause an integer overflow leading to out-of-bounds heap access. This could enable local privilege escalation without additional execution privileges an...

Microsoft discloses 5 critical vulnerabilities in June's Patch Tuesday, no zero-days

Microsoft released its monthly security update Tuesday, disclosing 69 vulnerabilities across its suite of products and software. Five of these vulnerabilities are considered to be critical, 45 of them are listed as being high severity, 17 of them are medium severity and two are of low severity. F...

CVE-2023-28469

An issue was discovered in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Valhall r29p0 through r42p0 before r43p0, and Arm's GPU Architecture Gen5 r41p0 through r42p0 before r43p0...

CVE-2023-28469

An issue was discovered in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Valhall r29p0 through r42p0 before r43p0, and Arm's GPU Architecture Gen5 r41p0 through r42p0 before r43p0...