CVE-2026-40572

Name of the Vulnerable Software and Affected Versions NovumOS versions prior to 0.24

Description Syscall 15 ('MemoryMapRange') allows Ring 3 user-mode processes to map arbitrary virtual address ranges into their address space without validating against forbidden regions. This includes critical kernel structures such as the IDT (Interrupt Descriptor Table), GDT (Global Descriptor Table), TSS (Task State Segment), and page tables. A local attacker can exploit this to modify kernel interrupt handlers, resulting in privilege escalation from user mode to kernel context.

Recommendations Update to version 0.24.