Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
andrew lutomirski vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2015-3290
arch/x86/entry/entry_64.S in the Linux kernel prior to 4.1.6 on the x86_64 platform improperly relies on espfix64 during nested NMI processing, which allows local users to gain privileges by triggering an NMI within a certain instruction window.
Linux Linux Kernel
1 EDB exploit
NA
CVE-2013-3232
The nr_recvmsg function in net/netrom/af_netrom.c in the Linux kernel prior to 3.9-rc7 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call.
Linux Linux Kernel
Linux Linux Kernel 3.9
NA
CVE-2013-1959
kernel/user_namespace.c in the Linux kernel prior to 3.8.9 does not have appropriate capability requirements for the uid_map and gid_map files, which allows local users to gain privileges by opening a file within an unprivileged process and then modifying the file within a privil...
Linux Linux Kernel 3.2.21
Linux Linux Kernel 3.4.30
Linux Linux Kernel 3.4.4
Linux Linux Kernel 3.0.25
Linux Linux Kernel 3.1.2
Linux Linux Kernel 3.4.11
Linux Linux Kernel 3.0
Linux Linux Kernel 3.2.19
Linux Linux Kernel 3.0.22
Linux Linux Kernel 3.2.23
Linux Linux Kernel 3.4.26
Linux Linux Kernel 3.4.13
Linux Linux Kernel 3.6.7
Linux Linux Kernel 3.0.5
Linux Linux Kernel 3.5.2
Linux Linux Kernel 3.2.18
Linux Linux Kernel 3.0.68
Linux Linux Kernel 3.3
Linux Linux Kernel 3.0.38
Linux Linux Kernel 3.8.2
Linux Linux Kernel 3.1
Linux Linux Kernel 3.0.63
1 EDB exploit
NA
CVE-2013-3227
The caif_seqpkt_recvmsg function in net/caif/caif_socket.c in the Linux kernel prior to 3.9-rc7 does not initialize a certain length variable, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call.
Linux Linux Kernel
Linux Linux Kernel 3.9
NA
CVE-2013-0160
The Linux kernel up to and including 3.7.9 allows local users to obtain sensitive information about keystroke timing by using the inotify API on the /dev/ptmx device.
Linux Linux Kernel 3.0
Linux Linux Kernel 3.0.38
Linux Linux Kernel 3.0.35
Linux Linux Kernel 3.0.23
Linux Linux Kernel 3.0.20
Linux Linux Kernel 3.0.15
Linux Linux Kernel 3.0.12
Linux Linux Kernel 3.0.4
Linux Linux Kernel 3.0.3
Linux Linux Kernel 3.0.7
Linux Linux Kernel 3.0.31
Linux Linux Kernel 3.1
Linux Linux Kernel 3.1.6
Linux Linux Kernel 3.1.5
Linux Linux Kernel 3.2.11
Linux Linux Kernel 3.0.44
Linux Linux Kernel 3.0.37
Linux Linux Kernel 3.0.24
Linux Linux Kernel 3.0.22
Linux Linux Kernel 3.0.17
Linux Linux Kernel 3.0.14
Linux Linux Kernel 3.0.26
1 EDB exploit
NA
CVE-2013-3223
The ax25_recvmsg function in net/ax25/af_ax25.c in the Linux kernel prior to 3.9-rc7 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call.
Linux Linux Kernel
Linux Linux Kernel 3.9
NA
CVE-2013-3228
The irda_recvmsg_dgram function in net/irda/af_irda.c in the Linux kernel prior to 3.9-rc7 does not initialize a certain length variable, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call.
Linux Linux Kernel
Linux Linux Kernel 3.9
NA
CVE-2013-3229
The iucv_sock_recvmsg function in net/iucv/af_iucv.c in the Linux kernel prior to 3.9-rc7 does not initialize a certain length variable, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call.
Linux Linux Kernel
Linux Linux Kernel 3.9
NA
CVE-2013-3234
The rose_recvmsg function in net/rose/af_rose.c in the Linux kernel prior to 3.9-rc7 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call.
Linux Linux Kernel
Linux Linux Kernel 3.9
NA
CVE-2015-3332
A certain backport in the TCP Fast Open implementation for the Linux kernel prior to 3.18 does not properly maintain a count value, which allow local users to cause a denial of service (system crash) via the Fast Open feature, as demonstrated by visiting the chrome://flags/#enabl...
Debian Debian Linux
Linux Linux Kernel
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »