Lucene search
+L

13097 matches found

redhat
redhat
added yesterday3 views

kernel: KVM: x86: Fix shadow paging use-after-free due to unexpected GFN

A flaw was found in the Linux kernel's KVM Kernel-based Virtual Machine x86 shadow paging mechanism. This use-after-free vulnerability arises from incorrect handling of Guest Frame Numbers GFNs when guest page tables are modified. A local attacker with control over a guest virtual machine could...

8.8CVSS6.5AI score0.00126EPSS
Exploits0References5
nuclei
nuclei
added yesterday173 views

Hoverfly < 1.10.3 - Arbitrary File Read

Hoverfly is a lightweight service virtualization/ API simulation / API mocking tool for developers and testers. The /api/v2/simulation POST handler allows users to create new simulation views from the contents of a user-specified file. This feature can be abused by an attacker to read arbitrary...

7.5CVSS6.2AI score0.55864EPSS
Exploits3References2
redhat
redhat
added 2 days ago5 views

kernel: KVM: arm64: vgic-its: Drop the translation cache reference only for the erased entry

A flaw was found in the Linux kernel's Kernel-based Virtual Machine KVM for ARM64, specifically within the vgic-its component. This vulnerability occurs when multiple concurrent operations incorrectly drop the translation cache's reference to an entry more than once during cache invalidation. Thi...

9.3CVSS6.8AI score0.00202EPSS
Exploits1References6
redhat
redhat
added 2 days ago6 views

Important: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

9.8CVSS6.8AI score0.0038EPSS
Exploits9References15
cvelist
cvelist
added 2 days ago22 views

CVE-2026-50371 Windows LUA File Virtualization Filter Driver Elevation of Privilege Vulnerability

...

7CVSS0.00193EPSS
Exploits0References1
cve
cve
added 2 days ago5 views

CVE-2026-50371

CVE-2026-50371 affects Windows LUAFV (Windows LUAFV driver). The issue is a race condition due to concurrent access to a shared resource without proper synchronization, enabling an authorized local attacker to elevate privileges. Microsoft has released updates addressing this family of vulnerabil...

7CVSS6.1AI score0.00193EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2 days ago5 views

CVE-2026-50371 Windows LUA File Virtualization Filter Driver Elevation of Privilege Vulnerability

...

7CVSS6.1AI score0.00193EPSS
Exploits0References1
redhat
redhat
added 2 days ago4 views

kernel: KVM: x86: Fix shadow paging use-after-free due to unexpected role

A flaw was found in the Linux kernel's Kernel-based Virtual Machine KVM x86 shadow paging mechanism. This vulnerability occurs when a host page directory entry PDE mapping is changed from within the guest, leading to an unexpected role mismatch in shadow paging. This mismatch can cause a...

7.1AI score0.00176EPSS
Exploits5References6
redhat
redhat
added 2 days ago7 views

kernel: KVM: x86: Fix shadow paging use-after-free due to unexpected GFN

A flaw was found in the Linux kernel's KVM Kernel-based Virtual Machine x86 shadow paging mechanism. This use-after-free vulnerability arises from incorrect handling of Guest Frame Numbers GFNs when guest page tables are modified. A local attacker with control over a guest virtual machine could...

8.8CVSS6.5AI score0.00126EPSS
Exploits0References5
osv
osv
added 3 days ago2 views

SUSE-SU-2026:2914-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP5 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2023-53995: net: ipv4: fix one memleak in inetdelifa bsc1255616. - CVE-2026-23255: net: add proper RCU protection to /proc/net/ptype bsc1259891. - CVE-2026-23451:...

9.8CVSS6.2AI score0.93235EPSS
Exploits49References131
rocky
rocky
added 3 days ago5 views

kernel security update

An update is available for kernel. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The kernel packages contain the Linux kernel, the core of any Linux operating...

8.8CVSS6.6AI score0.00176EPSS
Exploits5
cve
cve
added last week31 views

CVE-2026-23561

CVE-2026-23561 is part of a set of RBAC-related issues in XAPI (XenServer/XCP-ng) where certain administrator roles (vm-admin, etc.) can improperly modify RBAC-protected settings. Specifically, this CVE allows a vm-admin to set VM.other_config:storage_driver_domain and mark a VM as the storage do...

9.4CVSS7.3AI score0.0014EPSS
Exploits0References1
redhat
redhat
added 2026/07/09 3:46 a.m.10 views

kernel: KVM: x86: Fix shadow paging use-after-free due to unexpected role

A flaw was found in the Linux kernel's Kernel-based Virtual Machine KVM x86 shadow paging mechanism. This vulnerability occurs when a host page directory entry PDE mapping is changed from within the guest, leading to an unexpected role mismatch in shadow paging. This mismatch can cause a...

7.4AI score0.00176EPSS
Exploits5References6
redhat
redhat
added 2026/07/09 3:0 a.m.4 views

kernel: KVM: x86: Fix shadow paging use-after-free due to unexpected role

A flaw was found in the Linux kernel's Kernel-based Virtual Machine KVM x86 shadow paging mechanism. This vulnerability occurs when a host page directory entry PDE mapping is changed from within the guest, leading to an unexpected role mismatch in shadow paging. This mismatch can cause a...

6.5AI score0.00176EPSS
Exploits5References6
cgr
cgr
added 2026/07/09 2:25 a.m.9 views

GHSA-36GR-GW56-G35V vulnerabilities

Vulnerabilities for packages: linux-azure, linux-vmware, linux-gcp, linux-qemu-melange, linux-qemu...

6.1AI score
Exploits0
redhat
redhat
added 2026/07/08 4:21 a.m.4 views

kernel: Linux kernel KVM: Privilege escalation or denial of service due to improper shadow page table entry handling

A flaw was found in the Linux kernel's Kernel-based Virtual Machine KVM component. A local attacker with privileges on the host system could exploit a vulnerability in how KVM handles shadow page table entries SPTEs during memory-mapped I/O MMIO operations. By manipulating guest page table entrie...

8.1CVSS6AI score0.00184EPSS
Exploits0References5
redhat
redhat
added 2026/07/08 4:12 a.m.8 views

kernel: Linux kernel KVM: Privilege escalation or denial of service due to improper shadow page table entry handling

A flaw was found in the Linux kernel's Kernel-based Virtual Machine KVM component. A local attacker with privileges on the host system could exploit a vulnerability in how KVM handles shadow page table entries SPTEs during memory-mapped I/O MMIO operations. By manipulating guest page table entrie...

8.1CVSS6AI score0.00184EPSS
Exploits0References5
redhat
redhat
added 2026/07/08 4:9 a.m.6 views

kernel: Linux kernel KVM: Privilege escalation or denial of service due to improper shadow page table entry handling

A flaw was found in the Linux kernel's Kernel-based Virtual Machine KVM component. A local attacker with privileges on the host system could exploit a vulnerability in how KVM handles shadow page table entries SPTEs during memory-mapped I/O MMIO operations. By manipulating guest page table entrie...

8.1CVSS6AI score0.00184EPSS
Exploits0References5
cgr
cgr
added 2026/07/08 2:17 a.m.9 views

GHSA-4463-XXF2-768J vulnerabilities

Vulnerabilities for packages: linux-azure, linux-aws, linux-vmware, linux-gcp, linux-qemu-melange, linux-qemu...

6.1AI score
Exploits0
cgr
cgr
added 2026/07/08 2:17 a.m.10 views

GHSA-GVRM-XH5G-W8V6 vulnerabilities

Vulnerabilities for packages: linux-azure, linux-aws, linux-vmware, linux-gcp, linux-qemu-melange, linux-qemu...

6.1AI score
Exploits0
Rows per page
Query Builder