Lucene search
K

828 matches found

ATTACKERKB
ATTACKERKB
added 2026/04/24 2:42 p.m.5 views

CVE-2026-31588

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Use scratch field in MMIO fragment to hold small write values When exiting to userspace to service an emulated MMIO write, copy the to-be-written value to a scratch field in the MMIO fragment if the size of the data...

8.8CVSS5.3AI score0.00128EPSS
Exploits0References7Affected Software1
CVE
CVE
added 2026/04/24 2:42 p.m.33 views

CVE-2026-31589

The CVE-2026-31589 issue affects the Linux kernel memory management in the mm path related to folio_unmap_invalidate. The vulnerability arises when the system calls free_folio() directly, instead of loading the free_folio function pointer after obtaining a mapping reference or lock, potentially l...

9.8CVSS5.5AI score0.00444EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2026/04/22 1:54 p.m.27 views

CVE-2026-31479 drm/xe: always keep track of remap prev/next

In the Linux kernel, the following vulnerability has been resolved: drm/xe: always keep track of remap prev/next During 3D workload, user is reporting hitting: 413.361679 WARNING: drivers/gpu/drm/xe/xevm.c:1217 at vmbindioctlopsunwind+0x1e2/0x2e0 xe, CPU7: vkd3dqueue/9925 413.361944 CPU: 7 UID:...

7.8CVSS0.00129EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.6 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013786)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013786 advisory. In the Linux kernel, the following vulnerability has been resolved: RISC-V: Make port I/O string accessors actually work Fix port I/O string accessors such as insb',...

5.6AI score0.00173EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.6 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-013151)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013151 advisory. In the Linux kernel, the following vulnerability has been resolved: bpf: Use VMMAP instead of VMALLOC for ringbuf After commit 2fd3fb0be1d1 kasan, vmalloc: unpoison...

7.1CVSS5.6AI score0.00238EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.6 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-010883)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010883 advisory. In the Linux kernel, the following vulnerability has been resolved: udmabuf: Set ubuf-sg = NULL if the creation of sg table fails When userspace tries to map the...

5.9AI score0.00201EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.6 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-011166)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011166 advisory. In the Linux kernel, the following vulnerability has been resolved: RISC-V: Make port I/O string accessors actually work Fix port I/O string accessors such as insb',...

5.9AI score0.00173EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/04/20 7:22 p.m.9 views

CVE-2026-40572

NovumOS is a custom 32-bit operating system written in Zig and x86 Assembly. In versions prior to 0.24, Syscall 15 MemoryMapRange allows Ring 3 user-mode processes to map arbitrary virtual address ranges into their address space without validating against forbidden regions, including critical...

9CVSS5.8AI score0.00213EPSS
Exploits1References1
CVE
CVE
added 2026/04/18 12:16 a.m.19 views

CVE-2026-40572

NovumOS vulnerability CVE-2026-40572: In versions prior to 0.24, Syscall 15 (MemoryMapRange) lets Ring-3 user processes map arbitrary virtual ranges into their address space without validating against forbidden regions, including kernel structures (IDT, GDT, TSS, page tables). This can allow a lo...

9CVSS5.8AI score0.00213EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2026/04/18 12:16 a.m.33 views

CVE-2026-40572 NovumOS has Arbitrary Memory Mapping via Syscall 15 (MemoryMapRange)

NovumOS is a custom 32-bit operating system written in Zig and x86 Assembly. In versions prior to 0.24, Syscall 15 MemoryMapRange allows Ring 3 user-mode processes to map arbitrary virtual address ranges into their address space without validating against forbidden regions, including critical...

9CVSS0.00213EPSS
Exploits1References2
EUVD
EUVD
added 2026/04/18 12:16 a.m.6 views

EUVD-2026-23640

NovumOS is a custom 32-bit operating system written in Zig and x86 Assembly. In versions prior to 0.24, Syscall 15 MemoryMapRange allows Ring 3 user-mode processes to map arbitrary virtual address ranges into their address space without validating against forbidden regions, including critical...

9CVSS5.8AI score0.00213EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/04/18 12:0 a.m.10 views

PT-2026-33549

Name of the Vulnerable Software and Affected Versions NovumOS versions prior to 0.24 Description Syscall 15 'MemoryMapRange' allows Ring 3 user-mode processes to map arbitrary virtual address ranges into their address space without validating against forbidden regions. This includes critical kern...

9CVSS5.9AI score0.00213EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2026/04/10 1:22 a.m.9 views

CVE-2026-29923

The pstrip64.sys driver in EnTech Taiwan PowerStrip =3.90.736 allows local users to escalate privileges to SYSTEM via a crafted IOCTL request enabling unprivileged users to map arbitrary physical memory into their address space and modify critical kernel structures...

7.8CVSS6AI score0.00107EPSS
Exploits1References1
EUVD
EUVD
added 2026/04/09 9:31 p.m.5 views

EUVD-2026-21014

The pstrip64.sys driver in EnTech Taiwan PowerStrip =3.90.736 allows local users to escalate privileges to SYSTEM via a crafted IOCTL request enabling unprivileged users to map arbitrary physical memory into their address space and modify critical kernel structures...

6AI score0.00107EPSS
Exploits1References3
CVE
CVE
added 2026/04/09 12:0 a.m.21 views

CVE-2026-29923

The CVE relates to EnTech Taiwan PowerStrip ≤ 3.90.736 where the pstrip64.sys kernel driver exposes IOCTL 0x80002008 that, without proper checks, maps arbitrary physical memory into an unprivileged process via \Device\PhysicalMemory/ZwMapViewOfSection. This creates an unrestricted physical memory...

7.8CVSS6AI score0.00107EPSS
Exploits1References2
Packet Storm News
Packet Storm News
added 2026/04/06 12:0 a.m.4 views

pstrip64.sys Privilege Escalation

The pstrip64.sys kernel driver exposes an IOCTL that allows low-privileged users to map arbitrary ranges of physical memory into their own virtual address space. This primitive allows full read/write access to the system's physical RAM, enabling attackers to modify critical kernel structures and...

6.1AI score0.00107EPSS
Exploits1
GithubExploit
GithubExploit
added 2026/03/27 7:3 p.m.173 views

Exploit for Access of Memory Location Before Start of Buffer in Apple Ipados

CVE-2024-27840 — Kernel Memory Protection Bypass First publ...

7.5CVSS6.3AI score0.00252EPSS
Exploits1
EUVD
EUVD
added 2026/03/25 12:30 p.m.6 views

EUVD-2026-15372

In the Linux kernel, the following vulnerability has been resolved: tracing: Fix WARNON in tracingbuffersmmapclose When a process forks, the child process copies the parent's VMAs but the usermapped reference count is not incremented. As a result, when both the parent and child processes exit,...

5.6AI score0.00114EPSS
Exploits0References5
OSV
OSV
added 2026/03/25 11:16 a.m.5 views

UBUNTU-CVE-2026-23380

In the Linux kernel, the following vulnerability has been resolved: tracing: Fix WARNON in tracingbuffersmmapclose When a process forks, the child process copies the parent's VMAs but the usermapped reference count is not incremented. As a result, when both the parent and child processes exit,...

5.5CVSS5.7AI score0.00114EPSS
Exploits0References7
CNNVD
CNNVD
added 2026/03/04 12:0 a.m.6 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from an error in the mapping of physical blocks by the checkswapactivate function, potentially leading...

7.8CVSS7AI score0.0016EPSS
Exploits0References6
Rows per page
Query Builder