13 matches found
CVE-2025-59093
Exos 9300 is affected by an insecure database password derivation in which a randomly generated password is built from static random values concatenated with the hostname and a registry-read string. This allows an attacker to derive the database password and authenticate as the user Exos9300Commo...
CVE-2025-12053
The drivers in the tool packages use RTLQUERYREGISTRYDIRECT flag to read a registry value to which an untrusted user-mode application may be able to cause a buffer overflow...
CVE-2025-12050
The drivers in the tool packages use RTLQUERYREGISTRYDIRECT flag to read a registry value to which an untrusted user-mode application may be able to cause a buffer overflow...
CVE-2025-12053 egwindrvx64.sys is potentially vulnerable to a buffer overflow
The drivers in the tool packages use RTLQUERYREGISTRYDIRECT flag to read a registry value to which an untrusted user-mode application may be able to cause a buffer overflow...
CVE-2025-12052 egwindrv.sys is potentially vulnerable to a buffer overflow.
The drivers in the tool packages use RTLQUERYREGISTRYDIRECT flag to read a registry value to which an untrusted user-mode application may be able to cause a buffer overflow...
CVE-2025-12051
The CVE-2025-12051 entry describes a buffer overflow vulnerability in drivers within InsydeH2O tool packages where RTL_QUERY_REGISTRY_DIRECT is used to read a registry value. An untrusted user-mode application may manipulate the registry value to trigger the overflow. Affected software is referen...
CVE-2025-12050
CVE-2025-12050 affects drivers in tool packages that read a registry value using RTL_QUERY_REGISTRY_DIRECT, potentially allowing a local untrusted user to cause a buffer overflow. Red Hat, NVD, NVD-derived listings and CNNVD cite the same description, with impact described as high confidentiality...
CVE-2025-12050 In H2OFFT32.sys is potentially vulnerable to a buffer overflow.
The drivers in the tool packages use RTLQUERYREGISTRYDIRECT flag to read a registry value to which an untrusted user-mode application may be able to cause a buffer overflow...
PT-2026-2437
Name of the Vulnerable Software and Affected Versions Windows Kernel Drivers affected versions not specified Description The drivers within the tool packages utilize the RTL QUERY REGISTRY DIRECT flag when reading a registry value. This process is susceptible to a buffer overflow if an untrusted...
CVE-2025-0425
Via the GUI of the "bestinformed Infoclient", a low-privileged user is by default able to change the server address of the "bestinformed Server" to which this client connects. This is dangerous as the "bestinformed Infoclient" runs with elevated permissions "nt authority\system". By changing the...
CVE-2025-0425
Cordaware bestinformed Infoclient is vulnerable to local privilege escalation: a low-privileged user can change the server address to a malicious or spoofed server, enabling elevation to nt authority\system on Windows. This relies on default GUI permissions and can be mitigated by deploying a cus...
Microsoft Guidance for Rogue System Register Read
Executive Summary On January 3, 2018, Microsoft released an advisory and security updates related to a newly discovered class of hardware vulnerabilities known as Spectre and Meltdown involving speculative execution side channels that affect AMD, ARM, and Intel CPUs to varying degrees. On May 21,...
KLA11030 Speculative Store Bypass and Rogue System Register Read vulnerabilities in Microsoft Surface Products
On January 3, 2018, Microsoft released advisories and security updates related to a recently discovered class of hardware vulnerabilities known as Spectre and Meltdown that affect AMD, ARM, and Intel CPUs. On May 21, 2018, Intel announced the Rogue System Registry Read vulnerability. Also a new...