NovumOS has Arbitrary Memory Mapping via Syscall 15 (MemoryMapRange)

NovumOS is a custom 32-bit operating system written in Zig and x86 Assembly. In versions prior to 0.24, Syscall 15 (MemoryMapRange) allows Ring 3 user-mode processes to map arbitrary virtual address ranges into their address space without validating against forbidden regions, including critical kernel structures such as the IDT, GDT, TSS, and page tables. A local attacker can exploit this to modify kernel interrupt handlers, resulting in privilege escalation from user mode to kernel context. This issue has been fixed in version 0.24.

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N

特权管理不恰当

NovumOS 安全漏洞

NovumOS是MinecAnton209个人开发者的一个32位保护模式操作系统。 NovumOS 0.24之前版本存在安全漏洞，该漏洞源于系统调用15允许Ring 3用户模式进程映射任意虚拟地址范围到其地址空间，且未验证禁止区域，可能导致本地攻击者修改内核中断处理程序，进而实现权限提升。

N/A

N/A