EUVD-2026-22461

Use after free in Windows WFP NDIS Lightweight Filter Driver wfplwfs.sys allows an authorized attacker to elevate privileges locally...

CVE-2026-27917 Windows WFP NDIS Lightweight Filter Driver (wfplwfs.sys) Elevation of Privilege Vulnerability

...

Microsoft Windows NDIS Driver Use-After-Free Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the ndis.sys drive...

CVE-2026-20936

CVE-2026-20936 is an information-disclosure vulnerability in Windows NDIS (network data path). The issue is an out-of-bounds read in the NDIS driver that could allow an authorized attacker with physical access to disclose data. In the Nessus/NCSC/NVD entries, the CVE is flagged under Windows NDIS...

CVE-2019-11867

Realtek NDIS driver rt640x64.sys, file version 10.1.505.2015, fails to do any size checking on an input buffer from user space, which the driver assumes has a size greater than zero bytes. To exploit this vulnerability, an attacker must send an IRP with a system buffer size of 0...

CVE-2025-60419

An issue was discovered in the NDIS Usermode IO driver RtkIOAC60.sys, version 6.0.5600.16348 allowing local authenticated attackers to send a crafted IOCTL request to the driver to cause a denial of service...

CVE-2025-60419

An issue was discovered in the NDIS Usermode IO driver RtkIOAC60.sys, version 6.0.5600.16348 allowing local authenticated attackers to send a crafted IOCTL request to the driver to cause a denial of service...

PT-2025-43666

Name of the Vulnerable Software and Affected Versions NDIS Usermode IO driver version 6.0.5600.16348 Description A flaw exists in the NDIS Usermode IO driver RtkIOAC60.sys that could allow a local authenticated attacker to cause a denial of service. This is achieved by sending a specially crafted...

CVE-2025-55339

Out-of-bounds read in Windows NDIS allows an authorized attacker to elevate privileges locally...

EUVD-2020-9024

Malware in sbrugna...

EUVD-2018-19994

Malware in sbrugna...

EUVD-2018-20787

Malware in sbrugna...

EUVD-2006-6368

Malware in sbrugna...

EUVD-2006-4913

Malware in sbrugna...

EUVD-2016-3614

Malware in sbrugna...

EUVD-2019-1467

Malware in sbrugna...

EUVD-2020-2331

Malware in sbrugna...

EUVD-2018-19993

Malware in sbrugna...

CVE-2020-0861

An information disclosure vulnerability exists when the Windows Network Driver Interface Specification NDIS improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Network Driver Interface Specification NDIS...

CVE-2019-0707

An elevation of privilege vulnerability exists in the Network Driver Interface Specification NDIS when ndis.sys fails to check the length of a buffer prior to copying memory to it.To exploit the vulnerability, in a local attack scenario, an attacker could run a specially crafted application to...