fix

Author: ghostbyt3

content/1day-breakdowns/cve-2024-38041.md

@@ -15,7 +15,6 @@ showTableOfContents: true
 
 CVE-2024-38041 is a information leak vulnerability in the Windows AppID driver (`appid.sys`). The flaw lies in the handler for IOCTL code `0x22A014`, which lacks proper validation of the caller's access mode. Specifically, the `AipDeviceIoControlDispatch` function does not verify that the request originates from kernel mode. As a result, a user-mode process running as LOCAL SERVICE can trigger this IOCTL to leak kernel pointers via a shared SystemBuffer.  By impersonating the LOCAL SERVICE account and invoking the vulnerable IOCTL, an attacker can leak kernel addresses, bypassing KASLR and paving the way for further kernel exploitation.
 
-**Title:** Windows Kernel Information Disclosure Vulnerability  
 **CVE-2024-38041:** https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38041  
 **Vulnerability Type:** Exposure of Sensitive Information to an Unauthorized Actor  
 **Tested On:** Windows 11 23H2  

content/1day-breakdowns/cve-2025-21333.md

@@ -15,6 +15,7 @@ showTableOfContents: true
 
 A vulnerability in the Windows Hyper-V NT Kernel Integration VSP driver exists due to a vulnerable function, `VkiRootAdjustSecurityDescriptorForVmwp()`, which can be invoked from user mode. This leads to a heap-based buffer overflow, ultimately resulting in privilege escalation.
 
+
 **CVE-2025-21333:** https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21333  
 **Vulnerability Type:** Heap-based Buffer Overflow  
 **Tested On:** Windows 11 23H2