Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-1614

Malware in sbrugna...

9.3CVSS8.2AI score0.00806EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-35548

Malicious code in bioql PyPI...

7CVSS6.9AI score0.00132EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/02/15 12:0 a.m.5 views

PT-2023-13063 · Insyde · Insydeh2O

Name of the Vulnerable Software and Affected Versions: Insyde InsydeH2O versions 5.0 through 5.5 Description: An issue was discovered in Insyde InsydeH2O that could cause TOCTOU race-condition issues due to DMA attacks on the FwBlockServiceSmm shared buffer used by SMM and non-SMM code, potential...

7CVSS7.3AI score0.00132EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2023/02/15 12:0 a.m.11 views

CVE-2022-32476

An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the AhciBusDxe shared buffer used by SMM and non-SMM code could cause TOCTOU race-condition issues that could lead to corruption of SMRAM and escalation of privileges. This attack can be mitigated using IOMMU...

7.4AI score0.00132EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2016/07/12 7:0 a.m.39 views

Windows File System Security Feature Bypass Vulnerability

A security feature bypass vulnerability exists in the Windows kernel that could allow an attacker to exploit time of check time of use TOCTOU issues in file path-based checks from a low-integrity application. An attacker who successfully exploited this vulnerability could potentially modify files...

6.3CVSS2.8AI score0.00926EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2006/02/10 12:0 a.m.41 views

Fedora Core 4 : unzip-5.51-13.fc4 (2006-098)

Mon Feb 6 2006 Ivana Varekova 5.51-13.fc4 - fix bug 178961 - CVE-2005-4667 - unzip long file name buffer overflow - Wed Aug 3 2005 Ivana Varekova 5.51-12.fc4 - fix bug 164928 - TOCTOU issue in unzip - Mon May 9 2005 Ivana Varekova 5.51-11 - fix bug 156959 invalid file mode on created files Note...

3.7CVSS5.6AI score0.01481EPSS
Exploits1References1
securityvulns
securityvulns
added 2004/01/03 12:0 a.m.57 views

TOCTOU with NT System Service Hooking

TOCTOU Time-Of-Check-to-Time-Of-Use problem is known for a while 1. Nevertheless such bugs are still not uncommon. That is more or less acceptable for general software but not for security products. I believe there are drivers that hook kernel system services by well known technique 2,3,4. Those...

0.1AI score
Exploits0
Rows per page
Query Builder