Tag
critical
advisory
NovumOS MemoryMapRange Privilege Escalation Vulnerability (CVE-2026-40572)
2 rules 1 TTP 1 CVEA vulnerability exists in NovumOS versions prior to 0.24 where the MemoryMapRange syscall allows user-mode processes to map arbitrary virtual address ranges, including kernel structures, leading to privilege escalation.
privilege-escalation
novumOS
CVE-2026-40572
2r
1t
1c
critical
advisory
NovumOS Local Privilege Escalation via Unvalidated Syscall
3 rules 1 TTP 1 CVEA local privilege escalation vulnerability exists in NovumOS versions before 0.24, where Syscall 12 (JumpToUser) lacks input validation, allowing user-mode processes to execute arbitrary code in kernel mode.
privilege-escalation
syscall
novumos
3r
1t
1c