CVE-2025-5747

WOLFBOX Level 2 EV Charger MCU Command Parsing Misinterpretation of Input Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installatons of WOLFBOX Level 2 EV Charger devices. Authentication is required to exploit this...

CVE-2025-21479 Incorrect Authorization in Graphics

Memory corruption due to unauthorized command execution in GPU micronode while executing specific sequence of commands...

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that originates from unauthorized command execution by a GPU micronode during the execution of a specific command sequence, resulting in memory corruption...

VulnCheck KEV: CVE-2025-21480

Multiple Qualcomm chipsets contain an incorrect authorization vulnerability. This vulnerability allows for memory corruption due to unauthorized command execution in GPU micronode while executing specific sequence of commands...

Security update for ucode-intel

This update for ucode-intel fixes the following issues: Intel CPU Microcode was updated to the 20250512 release bsc1243123 CVE-2024-28956: Exposure of Sensitive Information in Shared Microarchitectural Structures during Transient Execution for some Intel Processors may allow an authenticated user...

SUSE-SU-2025:01651-2 Security update for ucode-intel

This update for ucode-intel fixes the following issues: Intel CPU Microcode was updated to the 20250512 release bsc1243123 - CVE-2024-28956: Exposure of Sensitive Information in Shared Microarchitectural Structures during Transient Execution for some Intel Processors may allow an authenticated us...

TechPowerUp GPU-Z 安全漏洞

TechPowerUp GPU-Z is a lightweight application for managing and controlling video cards and graphics processors from TechPowerUp, Inc. A security vulnerability exists in TechPowerUp GPU-Z version 2.23.0 that stems from a memory leak in the sub140001880 function in the GPU-Z.sys library...

Intel Data Center GPU Flex Series Buffer Overflow Vulnerability

Intel Data Center GPU Flex Series is Intel's high-performance GPU solution for data centers, mainly serving cloud gaming, AI visual inference, media processing and other scenarios. The Intel Data Center GPU Flex Series suffers from a buffer overflow vulnerability that originates from a boundary...

Intel Data Center GPU Flex Series Access Control Error Vulnerability

Intel Data Center GPU Flex Series is Intel's high-performance GPU solution for data centers, mainly serving cloud gaming, AI visual inference, media processing and other scenarios. The Intel Data Center GPU Flex Series suffers from an Access Control Error vulnerability that stems from improper...

The vulnerability of the iommufdHWPT_nested_alloc() function in the Linux operating system’s IOMMU kernel driver allows a hacker to cause a service failure.

The vulnerability of the iommufdHWPTnestedalloc function in the Linux operating system’s IOMMU support driver is related to pointer aliasing. Exploiting this vulnerability could allow an attacker to cause a service failure...

CVE-2024-33687

Insufficient verification of data authenticity issue exists in NJ Series CPU Unit all versions and NX Series CPU Unit all versions. If a user program in the affected product is altered, the product may not be able to detect the alteration...

CVE-2024-32922

In gpupmpowerontopnolock of pixelgpupower.c, there is a possible compromise of protected memory due to a logic error in the code. This could lead to local escalation of privilege to TEE with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2024-44069

Pi-hole before 6 allows unauthenticated admin/api.php?setTempUnit= calls to change the temperature units of the web dashboard. NOTE: the supplier reportedly does "not consider the bug a security issue" but the specific motivation for letting arbitrary persons change the value Celsius, Fahrenheit,...

CVE-2023-21648

Memory corruption in RIL while trying to send apdu packet...

CVE-2023-21402

In MMUUnmapPages of mmucommon.c, there is a possible out of bounds read due to improper input validation. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2023-28367

Cross-site scripting vulnerability in CTA post function of VK All in One Expansion Unit 9.88.1.0 and earlier allows a remote authenticated attacker to inject an arbitrary script...

CVE-2023-21670

Memory Corruption in GPU Subsystem due to arbitrary command execution from GPU in privileged mode...

CVE-2023-20744

In vcu, there is a possible use after free due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07519142; Issue ID: ALPS07519200...

CVE-2023-20673

In vcu, there is a possible memory corruption due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07519103; Issue ID: ALPS07519103...

CVE-2023-1559

A vulnerability classified as problematic was found in SourceCodester Storage Unit Rental Management System 1.0. This vulnerability affects unknown code of the file classes/Users.php?f=save. The manipulation leads to unrestricted upload. The attack can be initiated remotely. The exploit has been...