Winpmem

Source repositories

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2024-12668	Velocidex Winpmem	Hig	0.46	8.2	0.00		Dec 16, 2024	Velocidex WinPmem versions below 4.1 suffer from an Out of Bounds Write vulnerability. By using an IO Control, a user space program can trick the driver into writing a 0 into any chosen memory location. In conjunction with information leakage from the WinPmem driver, attackers…
CVE-2024-10972	Velocidex Winpmem	Hig	0.40	7.3	0.00		Dec 16, 2024	Velocidex WinPmem versions 4.1 and below suffer from an Improper Input Validation vulnerability whereby an attacker with admin access can trigger a BSOD with a parallel thread changing the memory’s access right under the control of the user-mode application. This is due to…

CVE-2024-12668HigDec 16, 2024
Velocidex
Winpmem
risk 0.46cvss 8.2epss 0.00
Velocidex WinPmem versions below 4.1 suffer from an Out of Bounds Write vulnerability. By using an IO Control, a user space program can trick the driver into writing a 0 into any chosen memory location. In conjunction with information leakage from the WinPmem driver, attackers…
CVE-2024-10972HigDec 16, 2024
Velocidex
Winpmem
risk 0.40cvss 7.3epss 0.00
Velocidex WinPmem versions 4.1 and below suffer from an Improper Input Validation vulnerability whereby an attacker with admin access can trigger a BSOD with a parallel thread changing the memory’s access right under the control of the user-mode application. This is due to…