Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
andrew lutomirski vulnerabilities and exploits
(subscribe to this query)
725
VMScore
CVE-2015-3290
arch/x86/entry/entry_64.S in the Linux kernel prior to 4.1.6 on the x86_64 platform improperly relies on espfix64 during nested NMI processing, which allows local users to gain privileges by triggering an NMI within a certain instruction window.
Linux Linux Kernel
1 EDB exploit
437
VMScore
CVE-2013-3232
The nr_recvmsg function in net/netrom/af_netrom.c in the Linux kernel prior to 3.9-rc7 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call.
Linux Linux Kernel
Linux Linux Kernel 3.9
375
VMScore
CVE-2013-1959
kernel/user_namespace.c in the Linux kernel prior to 3.8.9 does not have appropriate capability requirements for the uid_map and gid_map files, which allows local users to gain privileges by opening a file within an unprivileged process and then modifying the file within a privil...
Linux Linux Kernel 3.2.21
Linux Linux Kernel 3.4.30
Linux Linux Kernel 3.4.4
Linux Linux Kernel 3.0.25
Linux Linux Kernel 3.1.2
Linux Linux Kernel 3.4.11
Linux Linux Kernel 3.0
Linux Linux Kernel 3.2.19
Linux Linux Kernel 3.0.22
Linux Linux Kernel 3.2.23
Linux Linux Kernel 3.4.26
Linux Linux Kernel 3.4.13
Linux Linux Kernel 3.6.7
Linux Linux Kernel 3.0.5
Linux Linux Kernel 3.5.2
Linux Linux Kernel 3.2.18
Linux Linux Kernel 3.0.68
Linux Linux Kernel 3.3
Linux Linux Kernel 3.0.38
Linux Linux Kernel 3.8.2
Linux Linux Kernel 3.1
Linux Linux Kernel 3.0.63
1 EDB exploit
215
VMScore
CVE-2013-0160
The Linux kernel up to and including 3.7.9 allows local users to obtain sensitive information about keystroke timing by using the inotify API on the /dev/ptmx device.
Linux Linux Kernel 3.0
Linux Linux Kernel 3.0.38
Linux Linux Kernel 3.0.35
Linux Linux Kernel 3.0.23
Linux Linux Kernel 3.0.20
Linux Linux Kernel 3.0.15
Linux Linux Kernel 3.0.12
Linux Linux Kernel 3.0.4
Linux Linux Kernel 3.0.3
Linux Linux Kernel 3.0.7
Linux Linux Kernel 3.0.31
Linux Linux Kernel 3.1
Linux Linux Kernel 3.1.6
Linux Linux Kernel 3.1.5
Linux Linux Kernel 3.2.11
Linux Linux Kernel 3.0.44
Linux Linux Kernel 3.0.37
Linux Linux Kernel 3.0.24
Linux Linux Kernel 3.0.22
Linux Linux Kernel 3.0.17
Linux Linux Kernel 3.0.14
Linux Linux Kernel 3.0.26
1 EDB exploit
437
VMScore
CVE-2013-3227
The caif_seqpkt_recvmsg function in net/caif/caif_socket.c in the Linux kernel prior to 3.9-rc7 does not initialize a certain length variable, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call.
Linux Linux Kernel
Linux Linux Kernel 3.9
437
VMScore
CVE-2013-3223
The ax25_recvmsg function in net/ax25/af_ax25.c in the Linux kernel prior to 3.9-rc7 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call.
Linux Linux Kernel
Linux Linux Kernel 3.9
437
VMScore
CVE-2013-3234
The rose_recvmsg function in net/rose/af_rose.c in the Linux kernel prior to 3.9-rc7 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call.
Linux Linux Kernel
Linux Linux Kernel 3.9
437
VMScore
CVE-2013-3228
The irda_recvmsg_dgram function in net/irda/af_irda.c in the Linux kernel prior to 3.9-rc7 does not initialize a certain length variable, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call.
Linux Linux Kernel
Linux Linux Kernel 3.9
437
VMScore
CVE-2013-3229
The iucv_sock_recvmsg function in net/iucv/af_iucv.c in the Linux kernel prior to 3.9-rc7 does not initialize a certain length variable, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call.
Linux Linux Kernel
Linux Linux Kernel 3.9
436
VMScore
CVE-2015-3332
A certain backport in the TCP Fast Open implementation for the Linux kernel prior to 3.18 does not properly maintain a count value, which allow local users to cause a denial of service (system crash) via the Fast Open feature, as demonstrated by visiting the chrome://flags/#enabl...
Debian Debian Linux
Linux Linux Kernel
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »