Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
audio module vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2022-2663
An issue was found in the Linux kernel in nf_conntrack_irc where the message handling can be confused and incorrectly matches the message. A firewall may be able to be bypassed when users are using unencrypted IRC with nf_conntrack_irc configured.
Linux Linux Kernel -
Debian Debian Linux 10.0
Debian Debian Linux 11.0
4.7
CVSSv3
CVE-2022-3303
A race condition flaw was found in the Linux kernel sound subsystem due to improper locking. It could lead to a NULL pointer dereference while handling the SNDCTL_DSP_SYNC ioctl. A privileged local user (root or member of the audio group) could use this flaw to crash the system, ...
Linux Linux Kernel 6.0
Linux Linux Kernel
Debian Debian Linux 10.0
Debian Debian Linux 11.0
4.7
CVSSv3
CVE-2022-40307
An issue exists in the Linux kernel up to and including 5.19.8. drivers/firmware/efi/capsule-loader.c has a race condition with a resultant use-after-free.
Linux Linux Kernel
Debian Debian Linux 10.0
Debian Debian Linux 11.0
1 Github repository
4.7
CVSSv3
CVE-2018-7995
Race condition in the store_int_with_restart() function in arch/x86/kernel/cpu/mcheck/mce.c in the Linux kernel up to and including 4.15.7 allows local users to cause a denial of service (panic) by leveraging root access to write to the check_interval file in a /sys/devices/syste...
Linux Linux Kernel
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 14.04
Debian Debian Linux 7.0
4.6
CVSSv3
CVE-2016-2184
The create_fixed_stream_quirk function in sound/usb/quirks.c in the snd-usb-audio driver in the Linux kernel prior to 4.5.1 allows physically proximate malicious users to cause a denial of service (NULL pointer dereference or double free, and system crash) via a crafted endpoints...
Linux Linux Kernel
Canonical Ubuntu Linux 12.04
Novell Suse Linux Enterprise Module For Public Cloud 12.0
Novell Suse Linux Enterprise Server 11.0
Novell Suse Linux Enterprise Server 12.0
Novell Suse Linux Enterprise Live Patching 12.0
Novell Suse Linux Enterprise Real Time Extension 11.0
Novell Suse Linux Enterprise Real Time Extension 12.0
Novell Suse Linux Enterprise Desktop 12.0
Novell Suse Linux Enterprise Workstation Extension 12.0
Novell Suse Linux Enterprise Debuginfo 11.0
Novell Suse Linux Enterprise Software Development Kit 11.0
Novell Suse Linux Enterprise Software Development Kit 12.0
1 EDB exploit
4.4
CVSSv3
CVE-2016-9104
Multiple integer overflows in the (1) v9fs_xattr_read and (2) v9fs_xattr_write functions in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allow local guest OS administrators to cause a denial of service (QEMU process crash) via a crafted offset, which triggers an out-of-bounds access...
Qemu Qemu
Debian Debian Linux 8.0
Opensuse Leap 42.2
3.3
CVSSv3
CVE-2020-11931
An Ubuntu-specific modification to Pulseaudio to provide security mediation for Snap-packaged applications was found to have a bypass of intended access restriction for snaps which plugs any of pulseaudio, audio-playback or audio-record via unloading the pulseaudio snap policy mo...
Pulseaudio Pulseaudio
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.10
Canonical Ubuntu Linux 20.04
NA
CVE-2011-2491
The Network Lock Manager (NLM) protocol implementation in the NFS client functionality in the Linux kernel prior to 3.0 allows local users to cause a denial of service (system hang) via a LOCK_UN flock system call.
Linux Linux Kernel
Redhat Enterprise Linux Server 5.0
Redhat Enterprise Linux Workstation 5.0
Redhat Enterprise Linux Desktop 5.0
NA
CVE-2011-1768
The tunnels implementation in the Linux kernel prior to 2.6.34, when tunnel functionality is configured as a module, allows remote malicious users to cause a denial of service (OOPS) by sending a packet during module loading.
Linux Linux Kernel 2.6.33.7
Linux Linux Kernel 2.6.33.9
Linux Linux Kernel 2.6.33.18
Linux Linux Kernel 2.6.33.14
Linux Linux Kernel 2.6.33.19
Linux Linux Kernel 2.6.33.2
Linux Linux Kernel 2.6.33.6
Linux Linux Kernel 2.6.33.17
Linux Linux Kernel 2.6.33.1
Linux Linux Kernel 2.6.33.4
Linux Linux Kernel 2.6.33
Linux Linux Kernel 2.6.33.12
Linux Linux Kernel 2.6.33.3
Linux Linux Kernel 2.6.33.13
Linux Linux Kernel 2.6.33.11
Linux Linux Kernel 2.6.33.15
Linux Linux Kernel 2.6.33.16
Linux Linux Kernel
Linux Linux Kernel 2.6.33.8
Linux Linux Kernel 2.6.33.5
Linux Linux Kernel 2.6.33.10
NA
CVE-2011-2495
fs/proc/base.c in the Linux kernel prior to 2.6.39.4 does not properly restrict access to /proc/#####/io files, which allows local users to obtain sensitive I/O statistics by polling a file, as demonstrated by discovering the length of another user's password.
Linux Linux Kernel 2.6.39
Linux Linux Kernel 2.6.39.1
Linux Linux Kernel
Linux Linux Kernel 2.6.39.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »