CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2017-16292

Malware in sbrugna...

5.5CVSS6.6AI score0.00063EPSS

Exploits0References8

F5 Networks•added 2023/02/21 7:56 p.m.•40 views

K63771715: Linux kernel vulnerability CVE-2017-7261

Security Advisory Description The vmwsurfacedefineioctl function in drivers/gpu/drm/vmwgfx/vmwgfxsurface.c in the Linux kernel through 4.10.5 does not check for a zero value of certain levels data, which allows local users to cause a denial of service ZEROSIZEPTR dereference, and GPF and possibly...

5.5CVSS6AI score0.00063EPSS

Exploits0Affected Software21

Tenable Nessus•added 2020/05/11 12:0 a.m.•42 views

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2020-5671)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-5671 advisory. - HID: hiddev: do cleanup in failure of opening a device Hillf Danton Orabug: 31206361 CVE-2019-19527 - HID: hiddev: avoid opening a disconnected...

8.3CVSS6.7AI score0.00514EPSS

Exploits0References5

RedhatCVE•added 2017/03/29 8:18 a.m.•36 views

CVE-2017-7294

An out-of-bounds write vulnerability was found in the Linux kernel's vmwsurfacedefineioctl function, in the 'drivers/gpu/drm/vmwgfx/vmwgfxsurface.c' file. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is unlikely...

7.8CVSS2.5AI score0.00036EPSS

Exploits0References1

NVD•added 2017/03/29 2:59 a.m.•19 views

CVE-2017-7294

The vmwsurfacedefineioctl function in drivers/gpu/drm/vmwgfx/vmwgfxsurface.c in the Linux kernel through 4.10.6 does not validate addition of certain levels data, which allows local users to trigger an integer overflow and out-of-bounds write, and cause a denial of service system hang or crash or...

7.8CVSS7.6AI score0.00036EPSS

Exploits0References5

Prion•added 2017/03/29 2:59 a.m.•20 views

Integer overflow

7.2CVSS7.4AI score0.00036EPSS

Exploits0References5Affected Software1

CVE•added 2017/03/29 1:32 a.m.•155 views

CVE-2017-7294

The CVE-2017-7294 issue affects the Linux kernel up to 4.10.6, specifically vmwgfx vmw_surface_define_ioctl() in drivers/gpu/drm/vmwgfx/vmwgfx_surface.c. A crafted ioctl to /dev/dri/renderD* can trigger an integer overflow and out-of-bounds write, causing denial of service (system hang/crash) and...

7.8CVSS7.4AI score0.00036EPSS

Exploits0References5Affected Software1

UbuntuCve•added 2017/03/28 12:0 a.m.•35 views

CVE-2017-7294

7.8CVSS6.8AI score0.00036EPSS

Exploits0References12

RedhatCVE•added 2017/03/27 2:10 p.m.•28 views

CVE-2017-7261

In was found that in the Linux kernel, in vmwsurfacedefineioctl function in 'drivers/gpu/drm/vmwgfx/vmwgfxsurface.c' file, a 'numsizes' parameter is assigned a user-controlled value which is not checked if it is zero. This is used in a call to kmalloc and later leads to dereferencing ZEROSIZEPTR,...

5.5CVSS2.4AI score0.00063EPSS

Exploits0References1

Prion•added 2017/03/24 9:59 p.m.•25 views

Design/Logic Flaw

The vmwsurfacedefineioctl function in drivers/gpu/drm/vmwgfx/vmwgfxsurface.c in the Linux kernel through 4.10.5 does not check for a zero value of certain levels data, which allows local users to cause a denial of service ZEROSIZEPTR dereference, and GPF and possibly panic via a crafted ioctl cal...

4.9CVSS5.6AI score0.00063EPSS

Exploits0References4Affected Software1

Cvelist•added 2017/03/24 9:0 p.m.•23 views

CVE-2017-7261

5.8AI score0.00063EPSS

Exploits0References4

CVE•added 2017/03/24 9:0 p.m.•130 views

CVE-2017-7261

CVE-2017-7261 affects the Linux kernel driver vmwgfx. The vmw_surface_define_ioctl function in drivers/gpu/drm/vmwgfx/vmwgfx_surface.c does not check for a zero value of certain levels data, allowing a local user to cause a denial of service (ZERO_SIZE_PTR dereference, GP fault, and potentially a...

5.5CVSS5.6AI score0.00063EPSS

Exploits0References4Affected Software1