Lucene search
K

835 matches found

EUVD
EUVD
added 2026/04/18 12:16 a.m.6 views

EUVD-2026-23640

NovumOS is a custom 32-bit operating system written in Zig and x86 Assembly. In versions prior to 0.24, Syscall 15 MemoryMapRange allows Ring 3 user-mode processes to map arbitrary virtual address ranges into their address space without validating against forbidden regions, including critical...

9CVSS5.8AI score0.00213EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/04/18 12:16 a.m.34 views

CVE-2026-40572 NovumOS has Arbitrary Memory Mapping via Syscall 15 (MemoryMapRange)

NovumOS is a custom 32-bit operating system written in Zig and x86 Assembly. In versions prior to 0.24, Syscall 15 MemoryMapRange allows Ring 3 user-mode processes to map arbitrary virtual address ranges into their address space without validating against forbidden regions, including critical...

9CVSS0.00213EPSS
Exploits1References2
CVE
CVE
added 2026/04/18 12:16 a.m.21 views

CVE-2026-40572

NovumOS vulnerability CVE-2026-40572: In versions prior to 0.24, Syscall 15 (MemoryMapRange) lets Ring-3 user processes map arbitrary virtual ranges into their address space without validating against forbidden regions, including kernel structures (IDT, GDT, TSS, page tables). This can allow a lo...

9CVSS5.8AI score0.00213EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/18 12:0 a.m.10 views

PT-2026-33549

Name of the Vulnerable Software and Affected Versions NovumOS versions prior to 0.24 Description Syscall 15 'MemoryMapRange' allows Ring 3 user-mode processes to map arbitrary virtual address ranges into their address space without validating against forbidden regions. This includes critical kern...

9CVSS5.9AI score0.00213EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2026/04/10 1:22 a.m.9 views

CVE-2026-29923

The pstrip64.sys driver in EnTech Taiwan PowerStrip =3.90.736 allows local users to escalate privileges to SYSTEM via a crafted IOCTL request enabling unprivileged users to map arbitrary physical memory into their address space and modify critical kernel structures...

7.8CVSS6AI score0.00107EPSS
Exploits1References1
EUVD
EUVD
added 2026/04/09 9:31 p.m.5 views

EUVD-2026-21014

The pstrip64.sys driver in EnTech Taiwan PowerStrip =3.90.736 allows local users to escalate privileges to SYSTEM via a crafted IOCTL request enabling unprivileged users to map arbitrary physical memory into their address space and modify critical kernel structures...

6AI score0.00107EPSS
Exploits1References3
CVE
CVE
added 2026/04/09 12:0 a.m.27 views

CVE-2026-29923

The CVE relates to EnTech Taiwan PowerStrip ≤ 3.90.736 where the pstrip64.sys kernel driver exposes IOCTL 0x80002008 that, without proper checks, maps arbitrary physical memory into an unprivileged process via \Device\PhysicalMemory/ZwMapViewOfSection. This creates an unrestricted physical memory...

7.8CVSS6AI score0.00107EPSS
Exploits1References2
Packet Storm News
Packet Storm News
added 2026/04/06 12:0 a.m.4 views

pstrip64.sys Privilege Escalation

The pstrip64.sys kernel driver exposes an IOCTL that allows low-privileged users to map arbitrary ranges of physical memory into their own virtual address space. This primitive allows full read/write access to the system's physical RAM, enabling attackers to modify critical kernel structures and...

6.1AI score0.00107EPSS
Exploits1
GithubExploit
GithubExploit
added 2026/03/27 7:3 p.m.180 views

Exploit for Access of Memory Location Before Start of Buffer in Apple Ipados

CVE-2024-27840 — Kernel Memory Protection Bypass First publ...

7.5CVSS6.3AI score0.00252EPSS
Exploits1
EUVD
EUVD
added 2026/03/25 12:30 p.m.7 views

EUVD-2026-15372

In the Linux kernel, the following vulnerability has been resolved: tracing: Fix WARNON in tracingbuffersmmapclose When a process forks, the child process copies the parent's VMAs but the usermapped reference count is not incremented. As a result, when both the parent and child processes exit,...

5.6AI score0.00114EPSS
Exploits0References5
OSV
OSV
added 2026/03/25 11:16 a.m.5 views

UBUNTU-CVE-2026-23380

In the Linux kernel, the following vulnerability has been resolved: tracing: Fix WARNON in tracingbuffersmmapclose When a process forks, the child process copies the parent's VMAs but the usermapped reference count is not incremented. As a result, when both the parent and child processes exit,...

5.5CVSS5.7AI score0.00114EPSS
Exploits0References7
CNNVD
CNNVD
added 2026/03/04 12:0 a.m.7 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from an error in the mapping of physical blocks by the checkswapactivate function, potentially leading...

7.8CVSS7AI score0.0016EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2026/02/17 12:24 a.m.11 views

SUSE CVE-2026-23133

In the Linux kernel, the following vulnerability has been resolved: wifi: ath10k: fix dmafreecoherent pointer dmaalloccoherent allocates a DMA mapped buffer and stores the addresses in XXXunaligned fields. Those should be reused when freeing the buffer rather than the aligned addresses...

4.7CVSS5.3AI score0.00123EPSS
Exploits0References19
EUVD
EUVD
added 2026/02/14 4:27 p.m.6 views

EUVD-2026-5865

In the Linux kernel, the following vulnerability has been resolved: nvme-pci: handle changing device dma map requirements The initial state of dmaneedsunmap may be false, but change to true while mapping the data iterator. Enabling swiotlb is one such case that can change the result. The nvme...

5.2AI score0.00155EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/02/05 12:24 a.m.6 views

SUSE CVE-2026-23093

In the Linux kernel, the following vulnerability has been resolved: ksmbd: smbd: fix dmaunmapsg nents The dmaunmapsg functions should be called with the same nents as the dmamapsg, not the value the map function returned...

5.5CVSS5.1AI score0.00123EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/02/05 12:0 a.m.8 views

Google Android 安全漏洞

Google Android is an open-source operating system based on Linux, developed by Google Inc. There are security vulnerabilities in Google Android, which stem from a lack of boundary checks in the vpummap function of vpuioctl. This vulnerability may lead to arbitrary memory mapping, potentially...

9.3CVSS5.9AI score0.00112EPSS
Exploits0References2
NVD
NVD
added 2026/02/04 5:16 p.m.6 views

CVE-2026-23097

In the Linux kernel, the following vulnerability has been resolved: migrate: correct lock ordering for hugetlb file folios Syzbot has found a deadlock analyzed by Lance Yang: 1 Task 5749: Holds foliolock, then tries to acquire immaprwsemread lock. 2 Task 5754: Holds immaprwsemwrite lock, then tri...

5.5CVSS0.00114EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2026/02/04 5:16 p.m.4 views

CVE-2026-23097

In the Linux kernel, the following vulnerability has been resolved: migrate: correct lock ordering for hugetlb file folios Syzbot has found a deadlock analyzed by Lance Yang: 1 Task 5749: Holds foliolock, then tries to acquire immaprwsemread lock. 2 Task 5754: Holds immaprwsemwrite lock, then tri...

5.5CVSS5.9AI score0.00114EPSS
Exploits0References25
Cvelist
Cvelist
added 2026/02/04 4:8 p.m.27 views

CVE-2026-23093 ksmbd: smbd: fix dma_unmap_sg() nents

In the Linux kernel, the following vulnerability has been resolved: ksmbd: smbd: fix dmaunmapsg nents The dmaunmapsg functions should be called with the same nents as the dmamapsg, not the value the map function returned...

0.00123EPSS
Exploits0References6
NVD
NVD
added 2026/02/02 4:16 p.m.7 views

CVE-2025-47397

Memory Corruption when initiating GPU memory mapping using scatter-gather lists due to unchecked IOMMU mapping errors...

7.8CVSS0.00092EPSS
Exploits0References1
Rows per page
Query Builder