1735 matches found
CVE-2025-12053
CVE-2025-12053 describes a buffer overflow in drivers within tool packages caused by using RTL_QUERY_REGISTRY_DIRECT to read a registry value. An untrusted user-mode application could trigger overflow, with local access required (CTL: LOW privileges) and no user interaction. Public references (NV...
CVE-2025-12051 H2OFFT64.sys is potentially vulnerable to a buffer overflow.
The drivers in the tool packages use RTLQUERYREGISTRYDIRECT flag to read a registry value to which an untrusted user-mode application may be able to cause a buffer overflow...
CVE-2025-12050 In H2OFFT32.sys is potentially vulnerable to a buffer overflow.
The drivers in the tool packages use RTLQUERYREGISTRYDIRECT flag to read a registry value to which an untrusted user-mode application may be able to cause a buffer overflow...
CVE-2020-23897
A User Mode Write AV in Editor!TMethodImplementationIntercept+0x54dcec of WildBit Viewer v6.6 allows attackers to cause a denial of service DoS via a crafted tga file...
CVE-2020-23888
A User Mode Write AV in Editor!TMethodImplementationIntercept+0x53f6c3 of WildBit Viewer v6.6 allows attackers to cause a denial of service DoS via a crafted psd file...
CVE-2020-23894
A User Mode Write AV in ntdll!RtlpCoalesceFreeBlocks+0x268 of WildBit Viewer v6.6 allows attackers to cause a denial of service DoS via a crafted tiff file...
CVE-2020-23562
IrfanView 4.54 allows a user-mode write access violation starting at FORMATS!ShowPlugInSaveOptionsW+0x000000000000aefe...
CVE-2020-23553
IrfanView 4.54 allows a user-mode write access violation starting at FORMATS!GetPlugInInfo+0x0000000000007d33...
CVE-2019-12893
Alternate Pic View 2.600 has a User Mode Write AV starting at PicViewer!PerfgrapFinalize+0x00000000000a8868...
CVE-2019-12899
Delta Electronics DeviceNet Builder 2.04 has a User Mode Write AV starting at ntdll!RtlQueueWorkItem+0x00000000000005e3...
CVE-2025-14282
A flaw was found in Dropbear. When running in multi-user mode and authenticating users, the dropbear ssh server does the socket forwardings requested by the remote client as root, only switching to the logged-in user upon spawning a shell or performing some operations like reading the user's file...
CVE-2023-53745 um: vector: Fix memory leak in vector_config
In the Linux kernel, the following vulnerability has been resolved: um: vector: Fix memory leak in vectorconfig If the return value of the umlparsevectorifspec function is NULL, we should call kfreeparams to prevent memory leak...
PT-2025-49475
In the Linux kernel, the following vulnerability has been resolved: um: vector: Fix memory leak in vector config If the return value of the uml parse vector ifspec function is NULL, we should call kfreeparams to prevent memory leak...
PT-2025-46396
Name of the Vulnerable Software and Affected Versions IntelR CIP software versions prior to WIN DCA 2.4.0.11001 Description A protection mechanism failure exists in some IntelR CIP software. This issue, occurring within Ring 3: User Applications, may allow an unprivileged software adversary with ...
CVE-2025-60419
An issue was discovered in the NDIS Usermode IO driver RtkIOAC60.sys, version 6.0.5600.16348 allowing local authenticated attackers to send a crafted IOCTL request to the driver to cause a denial of service...
CVE-2025-60419
CVE-2025-60419 affects Realtek’s NDIS Usermode IO driver RtkIOAC60.sys (v6.0.5600.16348). The issue allows a local authenticated attacker to send a crafted IOCTL to the driver to trigger a denial of service. Attack vector is LOCAL with LOW attack complexity and no privileges required, leading to ...
CVE-2025-60419
An issue was discovered in the NDIS Usermode IO driver RtkIOAC60.sys, version 6.0.5600.16348 allowing local authenticated attackers to send a crafted IOCTL request to the driver to cause a denial of service...
EUVD-2019-4759
Malware in sbrugna...
EUVD-2020-16306
Malware in sbrugna...
EUVD-2019-4752
Malware in sbrugna...