Tag

Novumos

2 briefs RSS

NovumOS MemoryMapRange Privilege Escalation Vulnerability (CVE-2026-40572)

A vulnerability exists in NovumOS versions prior to 0.24 where the MemoryMapRange syscall allows user-mode processes to map arbitrary virtual address ranges, including kernel structures, leading to privilege escalation.

privilege-escalation novumOS CVE-2026-40572

2r 1t 1c Apr 18, 2026

critical advisory

NovumOS Local Privilege Escalation via Unvalidated Syscall

3 rules 1 TTP 1 CVE

A local privilege escalation vulnerability exists in NovumOS versions before 0.24, where Syscall 12 (JumpToUser) lacks input validation, allowing user-mode processes to execute arbitrary code in kernel mode.

privilege-escalation syscall novumos

3r 1t 1c Apr 18, 2026