High
CVSS: 7.8
Requires malware code to misuse the DDK kernel module IOCTL interface.
Such code can use the interface in an unsupported way that allows subversion of the GPU to perform writes to arbitrary physical memory pages.
The product utilises a sh…
High
CVSS: 7.4
The on-endpoint Microsoft vulnerable driver blocklist is not fully synchronized with the online Microsoft recommended driver block rules. Some entries present on the online list have been excluded from the on-endpoint blocklist longer than…
Medium
CVSS: 6.8
Missing synchronization in Windows Hyper-V allows an authorized attacker to deny service over an adjacent network.
Medium
CVSS: 6.8
Missing synchronization in Windows Hyper-V allows an authorized attacker to deny service over an adjacent network.
Critical
CVSS: 9.0
LibJS in Ladybird before f5a6704 mishandles the freeing of the vector that arguments_list references, leading to a use-after-free, and allowing remote attackers to execute arbitrary code via a crafted .js file. NOTE: the GitHub README says…
High
CVSS: 8.7
A vulnerability exists in RTU IEC 61850 client and server functionality that could impact the availability if renegotiation of an open IEC61850 TLS connection takes place in specific timing situations, when IEC61850 communication is active.…