Ashlar-Vellum Cobalt CO File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interactio…

CVE-2023-34309HIGHCVSS 7.8EG 7.8

2024-05-03

Ashlar-Vellum Cobalt Untrusted Pointer Dereference Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to…

CVE-2023-34311HIGHCVSS 7.8EG 7.8

2024-05-03

Ashlar-Vellum Cobalt Untrusted Pointer Dereference Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to…

CVE-2023-34332HIGHCVSS 7.8EG 7.8

2024-01-09

AMI’s SPx contains a vulnerability in the BMC where an Attacker may cause an untrusted pointer to dereference by a local network. A successful exploitation of this vulnerability may lead to a loss of confidentiality, integrity…

CVE-2023-34333HIGHCVSS 7.8EG 7.8

2024-01-09

AMI’s SPx contains a vulnerability in the BMC where an Attacker may cause an untrusted pointer to dereference via a local network. A successful exploitation of this vulnerability may lead to a loss of confidentiality, integrit…

CVE-2023-35711HIGHCVSS 7.8EG 7.0

2024-05-03

Ashlar-Vellum Cobalt XE File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interactio…

CVE-2023-36011HIGHCVSS 7.8EG 7.8

2023-12-12

Win32k Elevation of Privilege Vulnerability

CVE-2023-36033HIGHCVSS 7.8EG 9.0⚠ KEV

2023-11-14

Windows DWM Core Library Elevation of Privilege Vulnerability

CVE-2023-36045HIGHCVSS 7.8EG 7.8

2023-11-14

Microsoft Office Graphics Remote Code Execution Vulnerability

CVE-2023-36596HIGHCVSS 7.5EG 6.5

2023-10-10

Remote Procedure Call Information Disclosure Vulnerability

CVE-2023-36759MEDIUMCVSS 6.7EG 6.7

2023-09-12

Visual Studio Elevation of Privilege Vulnerability

CVE-2023-39501HIGHCVSS 7.8EG 7.8

2024-05-03

PDF-XChange Editor OXPS File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction …

CVE-2023-40471HIGHCVSS 7.8EG 7.8

2024-05-03

PDF-XChange Editor App Untrusted Pointer Dereference Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to…

CVE-2023-40472HIGHCVSS 7.8EG 7.8

2024-05-03

PDF-XChange Editor JavaScript String Untrusted Pointer Dereference Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction …

CVE-2023-41139HIGHCVSS 7.8EG 7.8

2023-11-23

A maliciously crafted STP file when parsed through Autodesk AutoCAD 2024 and 2023 can be used to dereference an untrusted pointer. This vulnerability, along with other vulnerabilities, could lead to code execution in the current process.

CVE-2023-42772HIGHCVSS 8.2EG 8.2

2024-09-16

Untrusted pointer dereference in UEFI firmware for some Intel(R) reference processors may allow a privileged user to potentially enable escalation of privilege via local access.

CVE-2023-43518HIGHCVSS 7.3EG 7.3

2024-02-06

Memory corruption in video while parsing invalid mp2 clip.

CVE-2023-43532HIGHCVSS 8.4EG 8.4

2024-02-06

Memory corruption while reading ACPI config through the user mode app.

CVE-2024-0091HIGHCVSS 7.8EG 7.8

2024-06-13

NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability where a user can cause an untrusted pointer dereference by executing a driver API. A successful exploit of this vulnerability might lead to denial of service, informa…

CVE-2024-12576MEDIUMCVSS 5.5EG 5.5

2025-03-07

Software installed and run as a non-privileged user may conduct improper GPU system calls to trigger a crash of the FW running on the GPU freezing graphics output.

CVE-2024-20663MEDIUMCVSS 6.5EG 6.5

2024-01-09

Windows Message Queuing Client (MSMQC) Information Disclosure

CVE-2024-20664MEDIUMCVSS 6.5EG 6.5

2024-01-09

Microsoft Message Queuing Information Disclosure Vulnerability

CVE-2024-20680MEDIUMCVSS 6.5EG 6.5

2024-01-09

Windows Message Queuing Client (MSMQC) Information Disclosure

CVE-2024-20682HIGHCVSS 7.8EG 7.8

2024-01-09

Windows Cryptographic Services Remote Code Execution Vulnerability

CVE-2024-21338HIGHCVSS 7.8EG 9.0⚠ KEV

2024-02-13

Windows Kernel Elevation of Privilege Vulnerability

CVE-2024-21346HIGHCVSS 7.8EG 7.8

2024-02-13

Win32k Elevation of Privilege Vulnerability

CVE-2024-21455HIGHCVSS 7.8EG 7.8

2024-10-07

Memory corruption when a compat IOCTL call is followed by another IOCTL call from userspace to a driver.

CVE-2024-23136HIGHCVSS 7.8EG 7.5

2024-02-22

A maliciously crafted STP file in ASMKERN228A.dll when parsed through Autodesk applications can be used to dereference an untrusted pointer. This vulnerability, along with other vulnerabilities, could lead to code execution in the current …

CVE-2024-25078HIGHCVSS 7.4EG 7.4

2024-05-15

A memory corruption vulnerability in StorageSecurityCommandDxe in Insyde InsydeH2O before kernel 5.2: IB19130163 in 05.29.07, kernel 5.3: IB19130163 in 05.38.07, kernel 5.4: IB19130163 in 05.46.07, kernel 5.5: IB19130163 in 05.54.07, and k…

CVE-2024-25079HIGHCVSS 7.4EG 7.4

2024-05-15

A memory corruption vulnerability in HddPassword in Insyde InsydeH2O kernel 5.2 before 05.29.09, kernel 5.3 before 05.38.09, kernel 5.4 before 05.46.09, kernel 5.5 before 05.54.09, and kernel 5.6 before 05.61.09 could lead to escalating pr…

CVE-2024-26213HIGHCVSS 7.0EG 7.0

2024-04-09

Microsoft Brokering File System Elevation of Privilege Vulnerability

CVE-2024-26252MEDIUMCVSS 6.8EG 6.8

2024-04-09

Windows rndismp6.sys Remote Code Execution Vulnerability

CVE-2024-26254HIGHCVSS 7.5EG 7.5

2024-04-09

Microsoft Virtual Machine Bus (VMBus) Denial of Service Vulnerability

CVE-2024-27353HIGHCVSS 7.4EG 7.4

2024-05-15

A memory corruption vulnerability in SdHost and SdMmcDevice in Insyde InsydeH2O kernel 5.2 before 05.29.09, kernel 5.3 before 05.38.09, kernel 5.4 before 05.46.09, kernel 5.5 before 05.54.09, and kernel 5.6 before 05.61.09 could lead to es…

CVE-2024-30090HIGHCVSS 7.0EG 7.0

2024-06-11

Microsoft Streaming Service Elevation of Privilege Vulnerability

CVE-2024-33038HIGHCVSS 7.8EG 7.8

2024-09-02

Memory corruption while passing untrusted/corrupted pointers from DSP to EVA.

CVE-2024-33039MEDIUMCVSS 6.7EG 6.7

2024-12-02

Memory corruption when PAL client calls PAL service APIs by passing a random value as handle and the handle is not validated by the service.

CVE-2024-34023HIGHCVSS 8.4EG 8.4

2024-11-13

Untrusted pointer dereference in some Intel(R) Graphics Drivers may allow an authenticated user to potentially enable escalation of privilege via local access.

CVE-2024-35250HIGHCVSS 7.8EG 9.0⚠ KEV

2024-06-11

Windows Kernel-Mode Driver Elevation of Privilege Vulnerability

CVE-2024-36352HIGHCVSS 8.4EG 8.4

2025-09-06

Improper input validation in the AMD Graphics Driver could allow an attacker to supply a specially crafted pointer, potentially leading to arbitrary writes or denial of service.

CVE-2024-36461CRITICALCVSS 9.1EG 9.1

2024-08-12

Within Zabbix, users have the ability to directly modify memory pointers in the JavaScript engine.

CVE-2024-37339HIGHCVSS 8.8EG 8.8

2024-09-10

Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability

CVE-2024-37340HIGHCVSS 8.8EG 8.8

2024-09-10

Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability

CVE-2024-37969HIGHCVSS 8.0EG 8.0

2024-07-09

Secure Boot Security Feature Bypass Vulnerability