Lucene search
+L

366 matches found

ATTACKERKB
ATTACKERKB
added 2026/04/09 12:0 a.m.2 views

CVE-2026-29923

The pstrip64.sys driver in EnTech Taiwan PowerStrip =3.90.736 allows local users to escalate privileges to SYSTEM via a crafted IOCTL request enabling unprivileged users to map arbitrary physical memory into their address space and modify critical kernel structures...

6AI score0.00107EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/04/09 12:0 a.m.13 views

PT-2026-31701

Name of the Vulnerable Software and Affected Versions EnTech Taiwan PowerStrip versions up to and including 3.90.736 Description The pstrip64.sys driver in EnTech Taiwan PowerStrip allows local users to escalate privileges to SYSTEM via a crafted IOCTL request. This enables unprivileged users to...

7.8CVSS5.8AI score0.00107EPSS
Exploits1References10
CVE
CVE
added 2026/04/09 12:0 a.m.35 views

CVE-2026-29923

The CVE relates to EnTech Taiwan PowerStrip ≤ 3.90.736 where the pstrip64.sys kernel driver exposes IOCTL 0x80002008 that, without proper checks, maps arbitrary physical memory into an unprivileged process via \Device\PhysicalMemory/ZwMapViewOfSection. This creates an unrestricted physical memory...

7.8CVSS6AI score0.00107EPSS
Exploits1References2
Packet Storm News
Packet Storm News
added 2026/04/06 12:0 a.m.6 views

pstrip64.sys Privilege Escalation

The pstrip64.sys kernel driver exposes an IOCTL that allows low-privileged users to map arbitrary ranges of physical memory into their own virtual address space. This primitive allows full read/write access to the system's physical RAM, enabling attackers to modify critical kernel structures and...

6.1AI score0.00107EPSS
Exploits1
GithubExploit
GithubExploit
added 2026/04/01 7:8 p.m.387 views

MyPortIO-Exploit

MyPortIO-Exploit Local privilege escalation via arbitrary phy...

6.1AI score
Exploits0
EUVD
EUVD
added 2026/03/21 12:31 a.m.9 views

EUVD-2026-13836

Requires malware code to misuse the DDK kernel module IOCTL interface. Such code can use the interface in an unsupported way that allows subversion of the GPU to perform writes to arbitrary physical memory pages. The product utilises a shared resource in a concurrent manner but does not attempt t...

6AI score0.00078EPSS
Exploits0References2
NVD
NVD
added 2026/03/20 11:16 p.m.4 views

CVE-2026-22163

Requires malware code to misuse the DDK kernel module IOCTL interface. Such code can use the interface in an unsupported way that allows subversion of the GPU to perform writes to arbitrary physical memory pages. The product utilises a shared resource in a concurrent manner but does not attempt t...

7.8CVSS0.00078EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2026/02/13 10:43 a.m.270 views

Exploit for Improper Privilege Management in Patriotmemory Viper_Rgb_Firmware

GenericDrv amigendrv64.sys - Proof of Concept Overview...

7.1CVSS5.6AI score0.00412EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2026/01/16 12:24 a.m.27 views

CVE-2025-67246

A local information disclosure vulnerability exists in the Ludashi driver before 5.1025 due to a lack of access control in the IOCTL handler. This driver exposes a device interface accessible to a normal user and handles attacker-controlled structures containing the lower 4GB of physical addresse...

7.3CVSS5.8AI score0.0014EPSS
Exploits1References1
OSV
OSV
added 2026/01/15 4:16 p.m.7 views

CVE-2025-67246

A local information disclosure vulnerability exists in the Ludashi driver before 5.1025 due to a lack of access control in the IOCTL handler. This driver exposes a device interface accessible to a normal user and handles attacker-controlled structures containing the lower 4GB of physical addresse...

7.3CVSS5.9AI score0.0014EPSS
Exploits1References2
NVD
NVD
added 2026/01/15 4:16 p.m.13 views

CVE-2025-67246

A local information disclosure vulnerability exists in the Ludashi driver before 5.1025 due to a lack of access control in the IOCTL handler. This driver exposes a device interface accessible to a normal user and handles attacker-controlled structures containing the lower 4GB of physical addresse...

7.3CVSS0.0014EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/01/15 12:0 a.m.6 views

Ludashi Driver security vulnerability

Ludashi Driver is a driver management software developed by Ludashi Corporation in China. Versions of Ludashi Driver 5.1025 contained security vulnerabilities. These vulnerabilities were caused by improper access control in the IOCTL handler, which could lead to the reading of arbitrary physical...

7.3CVSS5.9AI score0.0014EPSS
Exploits1References3
CVE
CVE
added 2026/01/15 12:0 a.m.16 views

CVE-2025-67246

A local information disclosure in the Ludashi driver (pre-5.1025) due to insufficient access control in the IOCTL handler. The driver exposes a device interface to unprivileged users, accepts attacker-controlled structures containing the lower 4 GB of physical addresses, maps arbitrary physical m...

7.3CVSS5.4AI score0.0014EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/01/15 12:0 a.m.9 views

CVE-2025-67246

A local information disclosure vulnerability exists in the Ludashi driver before 5.1025 due to a lack of access control in the IOCTL handler. This driver exposes a device interface accessible to a normal user and handles attacker-controlled structures containing the lower 4GB of physical addresse...

5.4AI score0.0014EPSS
Exploits1References3
EUVD
EUVD
added 2026/01/15 12:0 a.m.7 views

EUVD-2026-2755

A local information disclosure vulnerability exists in the Ludashi driver before 5.1025 due to a lack of access control in the IOCTL handler. This driver exposes a device interface accessible to a normal user and handles attacker-controlled structures containing the lower 4GB of physical addresse...

7.3CVSS5.3AI score0.0014EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/01/15 12:0 a.m.3 views

CVE-2025-67246

A local information disclosure vulnerability exists in the Ludashi driver before 5.1025 due to a lack of access control in the IOCTL handler. This driver exposes a device interface accessible to a normal user and handles attacker-controlled structures containing the lower 4GB of physical addresse...

7.3CVSS5.6AI score0.0014EPSS
Exploits1References3
NVD
NVD
added 2026/01/13 5:15 p.m.7 views

CVE-2025-58409

Software installed and run as a non-privileged user may conduct improper GPU system calls to subvert GPU HW to write to arbitrary physical memory pages. Under certain circumstances this exploit could be used to corrupt data pages not allocated by the GPU driver but memory pages in use by the kern...

3.5CVSS0.00132EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:35 a.m.10 views

CVE-2021-41285

Ballistix MOD Utility through 2.0.2.5 is vulnerable to privilege escalation in the MODAPI.sys driver component. The vulnerability is triggered by sending a specific IOCTL request that allows low-privileged users to directly interact with physical memory via the MmMapIoSpace function call mapping...

7.8CVSS6.8AI score0.0052EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:24 a.m.7 views

CVE-2021-28685

AsIO264.sys and AsIO232.sys in ASUS GPUTweak II before 2.3.0.3 allow low-privileged users to interact directly with physical memory by calling one of several driver routines that map physical memory into the virtual address space of the calling process and to interact with MSR registers. This cou...

7.8CVSS6.5AI score0.00316EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:58 a.m.17 views

CVE-2020-7537

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Legacy Controllers Modicon Quantum & Modicon Premium see security notifications for affected versions, that could cause denial of service when a specially crafted Read Physical Memo...

7.5CVSS6.9AI score0.01382EPSS
Exploits0References1
Rows per page
Query Builder