Lucene search
K

1976 matches found

CVE
CVE
added 2026/06/21 5:45 a.m.27 views

CVE-2026-12781

CVE-2026-12781 affects EaseUS Partition Master up to 14.5. The flaw is in the kernel driver epmntdrv.sys, in an unknown function, enabling local, low-privilege access to escalate due to improper access control. Exploitation is publicly available and has been demonstrated as a local-facing vulnera...

8.5CVSS6.5AI score0.00112EPSS
Exploits0References6
EUVD
EUVD
added 2026/06/21 5:45 a.m.10 views

EUVD-2026-38146

A vulnerability was identified in EaseUS Partition Master up to 14.5. The affected element is an unknown function in the library epmntdrv.sys of the component Kernel Driver. The manipulation leads to improper access controls. The attack needs to be performed locally. The exploit is publicly...

8.5CVSS5.3AI score0.00112EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/06/21 5:45 a.m.40 views

CVE-2026-12781 EaseUS Partition Master Kernel Driver epmntdrv.sys access control

A vulnerability was identified in EaseUS Partition Master up to 14.5. The affected element is an unknown function in the library epmntdrv.sys of the component Kernel Driver. The manipulation leads to improper access controls. The attack needs to be performed locally. The exploit is publicly...

8.5CVSS0.00112EPSS
Exploits0References6
EUVD
EUVD
added 2026/06/21 5:0 a.m.10 views

EUVD-2026-38143

A vulnerability has been found in AOMEI Partition Assistant up to 10.10.1. This vulnerability affects unknown code in the library ampa10.sys of the component Kernel Driver. Such manipulation leads to improper access controls. The attack must be carried out locally. The exploit has been disclosed ...

8.5CVSS5.2AI score0.00113EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/06/21 5:0 a.m.39 views

CVE-2026-12778 AOMEI Partition Assistant Kernel Driver ampa10.sys access control

A vulnerability has been found in AOMEI Partition Assistant up to 10.10.1. This vulnerability affects unknown code in the library ampa10.sys of the component Kernel Driver. Such manipulation leads to improper access controls. The attack must be carried out locally. The exploit has been disclosed ...

8.5CVSS0.00113EPSS
Exploits0References5
CVE
CVE
added 2026/06/21 5:0 a.m.22 views

CVE-2026-12778

The CVE-2026-12778 entry concerns AOMEI Partition Assistant up to version 10.10.1, specifically the kernel driver library ampa10.sys. The vulnerability is described as an improper access control issue in a kernel component, exploitable via a local attack. The description indicates that the exploi...

8.5CVSS6.3AI score0.00113EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/06/18 12:0 a.m.7 views

Siemens Ruggedcom Rox Uncontrolled Recursion (CVE-2019-13103)

A crafted self-referential DOS partition table will cause all Das U-Boot versions through 2019.07-rc4 to infinitely recurse, causing the stack to grow infinitely and eventually either crash or overwrite other data. This plugin only works with Tenable.ot. Please visit...

7.1CVSS6.7AI score0.00404EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/06/17 1:24 p.m.3 views

util-linux: util-linux: heap use-after-free in libblkid nested partition probing

A flaw was found in the libblkid library of util-linux. During nested partition probing, the BSD, Minix, Solaris x86, and UnixWare partition probers cache a raw pointer to a parent partition entry in a dynamically allocated array. When subsequent partition additions cause the array to be...

6.8CVSS6AI score0.00112EPSS
Exploits0References5
NVD
NVD
added 2026/06/15 8:16 p.m.36 views

CVE-2026-39196

Datadog, Inc Vector v0.54.0 was discovered to contain a SQL injection vulnerability in the seturiquery parameter in the KeyPartitioner::partition function. This vulnerability allows attackers to access sensitive database information via crafted SQL statements...

9.8CVSS0.00321EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/15 12:0 a.m.16 views

PT-2026-49302

Name of the Vulnerable Software and Affected Versions Vector versions prior to 0.55.0 Description The ClickHouse sink contains a SQL/identifier injection flaw. The software escaped the table identifier but interpolated the database value raw into the INSERT statement, allowing a crafted database...

9.8CVSS5.4AI score0.00321EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/06/15 12:0 a.m.30 views

CVE-2026-39196

Datadog, Inc Vector v0.54.0 was discovered to contain a SQL injection vulnerability in the seturiquery parameter in the KeyPartitioner::partition function. This vulnerability allows attackers to access sensitive database information via crafted SQL statements...

0.00321EPSS
Exploits0References1
CVE
CVE
added 2026/06/15 12:0 a.m.21 views

CVE-2026-39196

Datadog Vector v0.54.0 contains a SQL injection in the set_uri_query parameter of KeyPartitioner::partition. The vulnerability could allow an attacker to access sensitive database information via crafted SQL statements. Affected component: Vector’s data routing/partition logic (KeyPartitioner::pa...

9.8CVSS5.7AI score0.00321EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2026/06/14 3:11 p.m.121 views

GreatXML-PoC

GreatXML Reverse-Shell POC A self-contained Python proof-of-c...

5.6AI score
Exploits0
SUSE CVE
SUSE CVE
added 2026/06/13 2:16 a.m.9 views

SUSE CVE-2026-53701

An out-of-bounds write vulnerability was found in GStreamer's H.266/VVC PPS picture partition parser in gst-plugins-bad. In the multi-slice-in-tile processing of gsth266parserparsepicturepartition gsth266parser.c, the loop iterates without checking that the slice index stays within bounds, writin...

6.5CVSS5.4AI score0.00206EPSS
Exploits0References3
CVE
CVE
added 2026/06/11 6:15 p.m.19 views

CVE-2026-53701

GStreamer: gst-plugins-bad H.266/VVC PPS picture partition parser (gst_h266_parser_parse_picture_partition) contains an out-of-bounds write due to a bound-check omission in the multi-slice-in-tile processing. The loop may write beyond three fixed-size arrays (slice_height_in_ctus, slice_top_left_...

6.5CVSS5.5AI score0.00206EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/06/11 6:15 p.m.8 views

CVE-2026-53701 Gstreamer1-plugins-bad-free: gstreamer: out-of-bounds write in h.266/vvc pps picture partition parser

An out-of-bounds write vulnerability was found in GStreamer's H.266/VVC PPS picture partition parser in gst-plugins-bad. In the multi-slice-in-tile processing of gsth266parserparsepicturepartition gsth266parser.c, the loop iterates without checking that the slice index stays within bounds, writin...

6.5CVSS5.5AI score0.00206EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/06/11 6:6 p.m.10 views

CVE-2026-53701

An out-of-bounds write vulnerability was found in GStreamer's H.266/VVC PPS picture partition parser in gst-plugins-bad. In the multi-slice-in-tile processing of gsth266parserparsepicturepartition gsth266parser.c, the loop iterates without checking that the slice index stays within bounds, writin...

6.5CVSS5.2AI score0.00206EPSS
Exploits0References3
The Hacker News
The Hacker News
added 2026/06/11 5:43 p.m.12 views

New GreatXML Exploit Bypasses Windows BitLocker via Recovery Partition XML Files

Security researcher Chaotic Eclipse aka Nightmare-Eclipse and MSNightmare has released a new Windows BitLocker bypass dubbed GreatXML , a day after they published an exploit for Microsoft Defender. "This was an accidental discovery, it took a total of 4 hours to find this," the researcher said in...

6.8CVSS6.4AI score0.01249EPSS
Exploits2
CNNVD
CNNVD
added 2026/06/11 12:0 a.m.13 views

gst-plugins-bad 缓冲区错误漏洞

gst-plugins-bad is a GStreamer open-source plugin. gst-plugins-bad has a buffer error vulnerability, which stems from the multiple slice processing loop in the gsth266 parser’s gsth266parserparsepicturepartition function. This loop does not check whether the slice index exceeds the boundary. When...

6.5CVSS5.6AI score0.00206EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/08 11:15 a.m.13 views

CVE-2026-40290

A flaw was found in OP-TEE Trusted Execution Environment. A local attacker could exploit a user-after-free UAF race condition in the shared memory teardown logic when OP-TEE is configured as a Secure Partition Management Controller SPMC for Secure EL0 S-EL0 Secure Partitions. This vulnerability...

7.8CVSS6AI score0.00187EPSS
Exploits1References2
Rows per page
Query Builder