CVE-2019-13047

Published June 29th, 2019

View on NVD ↗

CVSS v3

N/A

CVSS v2

7.2

HIGH

Affected

PROJECT

Description

kernel/sys/syscall.c in ToaruOS through 1.10.9 has incorrect access control in sys_sysfunc case 9 for TOARU_SYS_FUNC_SETHEAP, allowing arbitrary kernel pages to be mapped into user land, leading to root access.

mehsauce/kowasuos

A collection of security vulnerabilities and exploits for ToaruOS. https://toaruos.org/

GitHub