24 matches found
CVE-2025-55676
Generation of error message containing sensitive information in Windows USB Video Driver allows an authorized attacker to disclose information locally...
EUVD-2025-6351
Malicious code in bioql PyPI...
EUVD-2025-6335
Malicious code in bioql PyPI...
EUVD-2025-6352
Malicious code in bioql PyPI...
CVE-2025-24987
Out-of-bounds read in Windows USB Video Driver allows an authorized attacker to elevate privileges with a physical attack...
CVE-2025-24055
Out-of-bounds read in Windows USB Video Driver allows an authorized attacker to disclose information with a physical attack...
CVE-2025-24988
Out-of-bounds read in Windows USB Video Driver allows an authorized attacker to elevate privileges with a physical attack...
Vulnerabilities fixed in Microsoft Windows
Microsoft has fixed vulnerabilities in Windows. A malicious party can exploit the vulnerabilities to carry out attacks that can lead to the following categories of damage: - Denial-of-Service DoS - Circumvention of security measure - Execution of arbitrary code root/admin privileges - Execution o...
CVE-2025-24987
Out-of-bounds read in Windows USB Video Driver allows an authorized attacker to elevate privileges with a physical attack...
CVE-2025-24055
Out-of-bounds read in Windows USB Video Driver allows an authorized attacker to disclose information with a physical attack...
CVE-2025-24988
The CVE-2025-24988 entry affects the Windows USB Video Driver, with an out-of-bounds read vulnerability that enables an authorized attacker with physical access to elevate privileges. Connected sources confirm this CVE name and context and indicate Microsoft has released updates to fix Windows US...
CVE-2025-24987
CVE-2025-24987 is a Windows USB Video Driver vulnerability described as an out-of-bounds read that can allow an authorized attacker to elevate privileges with physical access. The issue affects the Windows USB Video Driver component and is associated with high impact on confidentiality, integrity...
Windows USB Video Class System Driver Information Disclosure Vulnerability
Out-of-bounds read in Windows USB Video Driver allows an authorized attacker to disclose information with a physical attack...
Windows USB Video Class System Driver Elevation of Privilege Vulnerability
Out-of-bounds read in Windows USB Video Driver allows an authorized attacker to elevate privileges with a physical attack...
PT-2025-10807 · Microsoft · Windows Usb Video Driver +1
Name of the Vulnerable Software and Affected Versions: Windows USB Video Driver affected versions not specified Description: The issue is an out-of-bounds read that allows an authorized attacker to disclose information, requiring a physical attack. Recommendations: At the moment, there is no...
kernel: media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format
A vulnerability was found in the Linux kernel's USB Video Class driver. A buffer for video frame data is allocated, which does not account for all of the frame formats contained in a video stream, leading to an out-of-bounds write when a stream includes frames with an undefined format. An attacke...
kernel: media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format
A vulnerability was found in the Linux kernel's USB Video Class driver. A buffer for video frame data is allocated, which does not account for all of the frame formats contained in a video stream, leading to an out-of-bounds write when a stream includes frames with an undefined format. An attacke...
The vulnerability of the USB Video Class Driver (UVC) driver (usbvideo.sys) on Windows operating systems, which allows attackers to escalate their privileges
The vulnerability of the USB Video Class Driver UVC driver usbvideo.sys for Windows operating systems is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain increased privileges...
UBUNTU-CVE-2017-17975
Use-after-free in the usbtvprobe function in drivers/media/usb/usbtv/usbtv-core.c in the Linux kernel through 4.14.10 allows attackers to cause a denial of service system crash or possibly have unspecified other impact by triggering failure of audio registration, because a kfree of the usbtv data...
Oracle Linux 5 : kernel (ELSA-2008-0275)
The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2008-0275 advisory. 2.6.18-53.1.21.0.1.el5 - NET Add entropy support to e1000 and bnx2 John Sobecki ORA 6045759 - NET Fix msi issue with kexec/kdump Michael Chan ORA 62193...