21727 matches found
Windows Projected File System Elevation of Privilege Vulnerability
Buffer over-read in Windows Projected File System Filter Driver allows an authorized attacker to elevate privileges locally...
Windows Storage VSP Driver Elevation of Privilege Vulnerability
Improper access control in Windows Storage VSP Driver allows an authorized attacker to elevate privileges locally...
Windows Storage VSP Driver Elevation of Privilege Vulnerability
Missing authentication for critical function in Windows Storage VSP Driver allows an authorized attacker to elevate privileges locally...
Windows DirectX Information Disclosure Vulnerability
Exposure of sensitive information to an unauthorized actor in Microsoft Graphics Component allows an authorized attacker to disclose information over a network...
Windows File Explorer Elevation of Privilege Vulnerability
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Shell allows an authorized attacker to elevate privileges locally...
Windows Installer Elevation of Privilege Vulnerability
Improper input validation in Windows Installer allows an authorized attacker to elevate privileges locally...
Microsoft Excel Remote Code Execution Vulnerability
Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally...
Win32k Elevation of Privilege Vulnerability
Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally...
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
Heap-based buffer overflow in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally...
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
Out-of-bounds read in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally...
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
Use after free in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally...
Microsoft Exchange Server Spoofing Vulnerability
User interface ui misrepresentation of critical information in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network...
DirectX Graphics Kernel Denial of Service Vulnerability
Null pointer dereference in Windows DirectX allows an authorized attacker to deny service locally...
Microsoft Word Remote Code Execution Vulnerability
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally...
Microsoft Word Remote Code Execution Vulnerability
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally...
Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability
Buffer over-read in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to disclose information over a network...
ntfs3: pretend $Extend records as regular files
...
regmap: slimbus: fix bus_context pointer in regmap init calls
...
usb: cdns3: gadget: Use-after-free during failed initialization and exit of cdnsp gadget
...
usb: gadget: f_fs: Fix epfile null pointer access after ep enable.
...
jfs: Verify inode mode when loading from disk
...
orangefs: fix xattr related buffer overflow...
...
iommufd: Don't overflow during division for dirty tracking
...
9p/trans_fd: p9_fd_request: kick rx thread if EPOLLIN
...
Bluetooth: SCO: Fix UAF on sco_conn_free
...
exfat: validate cluster allocation bits of the allocation bitmap
...
x86: fix clear_user_rep_good() exception handling annotation
...
Bluetooth: 6lowpan: reset link-local header on ipv6 recv path
...
net: sched: act_connmark: initialize struct tc_ife to fix kernel leak
...
Bluetooth: btusb: reorder cleanup in btusb_disconnect to avoid UAF
...
Bluetooth: MGMT: cancel mesh send timer when hdev removed
...
drm/amdgpu: Fix NULL pointer dereference in VRAM logic for APU devices
...
ALSA: usb-audio: Fix NULL pointer dereference in snd_usb_mixer_controls_badd
...
mm/secretmem: fix use-after-free race in fault handler
...
cifs: client: fix memory leak in smb3_fs_context_parse_param
...
ALSA: usb-audio: Fix potential overflow of PCM transfer buffer
...
sctp: prevent possible shift-out-of-bounds in sctp_transport_update_rto
...
tipc: Fix use-after-free in tipc_mon_reinit_self().
...
drm/vmwgfx: Validate command header size against SVGA_CMD_MAX_DATASIZE
...
NFSD: free copynotify stateid in nfs4_free_ol_stateid()
...
smb/server: fix possible memory leak in smb2_read()
...
smb/server: fix possible refcount leak in smb2_sess_setup()
...
net: sched: act_ife: initialize struct tc_ife to fix KMSAN kernel-infoleak
...
drm/amdgpu: hide VRAM sysfs attributes on GPUs without VRAM
...
exfat: fix improper check of dentry.stream.valid_size
...
Apache HTTP Server: mod_userdir+suexec bypass via AllowOverride FileInfo
...
Apache HTTP Server: CGI environment variable override
...
A denial-of-service vulnerability exists in github.com/sirupsen/logrus when using Entry.Writer() to log a single-line payload larger than 64KB without newline characters.
...
Apache HTTP Server: NTLM Leakage on Windows through UNC SSRF
...
Quadratic complexity in node ID cache clearing
...