Toaruos: Security Vulnerabilities
readelf in ToaruOS 2.0.1 has some arbitrary address read vulnerabilities when parsing a crafted ELF file.
CVSS Score
3.3
EPSS Score
0.0
Published
2022-09-28
readelf in ToaruOS 2.0.1 has a global overflow allowing RCE when parsing a crafted ELF file.
CVSS Score
7.8
EPSS Score
0.0
Published
2022-09-27
ToaruOS 1.99.2 is affected by incorrect access control via the kernel. Improper MMU management and having a low GDT address allows it to be mapped in userland. A call gate can then be written to escalate to CPL 0.
CVSS Score
8.8
EPSS Score
0.0
Published
2022-06-08