14 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-18883
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Xen 4.9.x through 4.11.x, on Intel x86 platforms, allowing x86 HVM and PVH guests to cause a host OS denial of service NULL pointer...
CVE-2019-18883
creationtimestamp| type| source ---|---|--- 2024-02-13 15:36:19+00:00| seen| https://t.me/ctinow/183886...
SUSE: Security Advisory (SUSE-SU-2018:4300-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2018:4070-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2017-18883
creationtimestamp| type| source ---|---|--- 2020-06-19 22:55:32+00:00| seen| https://t.me/cibsecurity/12924...
CVE-2019-18883
CVE-2019-18883 is a stored XSS in Lavalite CMS version 5.7, exploitable via the admin/profile name or designation field. The root cause is a vulnerability in Lavalite’s web application code that allows injection of JavaScript into profile fields (as demonstrated by the historical exploit examples...
LavaLite CMS 5.7 Cross Site Scripting
Exploit Title: LavaLite CMS - 5.7 - Cross-Site Scripting Date: 09-10-2019 Exploit Author: Ismail Tasdelen Vendor Homepage: https://lavalite.org/ Software Link : https://github.com/LavaLite/cms Software : LavaLite CMS - v 5.7 Version : v 5.7 Vulernability Type : Cross-site Scripting Vulenrability ...
openSUSE Security Update : xen (openSUSE-2018-1624) (Foreshadow)
This update for xen fixes the following issues : Update to Xen 4.10.2 bug fix release bsc1027519. Security vulnerabilities fixed : - CVE-2018-19961, CVE-2018-19962: Fixed an issue related to insufficient TLB flushing with AMD IOMMUs, which potentially allowed a guest to escalate its privileges, m...
SUSE SLED12 / SLES12 Security Update : xen (SUSE-SU-2018:4070-1)
This update for xen fixes the following issues : Security issues fixed : CVE-2018-18849: Fixed an out of bounds memory access issue was found in the LSI53C895A SCSI Host Bus Adapter emulation while writing a message in lsidomsgin bsc1114423. CVE-2018-18883: Fixed a NULL pointer dereference that...
openSUSE: Security Advisory for xen (openSUSE-SU-2018:4111-1)
The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
SUSE-SU-2018:4070-1 Security update for xen
This update for xen fixes the following issues: Security issues fixed: - CVE-2018-18849: Fixed an out of bounds memory access issue was found in the LSI53C895A SCSI Host Bus Adapter emulation while writing a message in lsidomsgin bsc1114423. - CVE-2018-18883: Fixed a NULL pointer dereference that...
Fedora Update for xen FEDORA-2018-fe24359b69
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 27 : xen (2018-f20a0cead5)
x86: Nested VT-x usable even when disabled XSA-278 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
CVE-2018-18883
CVE-2018-18883 affects Xen hypervisor (versions 4.9.x through 4.11.x) on Intel x86, where nested VT-x is not properly restricted for x86 HVM and PVH guests. The vulnerability can cause a host OS denial of service via a NULL pointer dereference and potentially other impact, as described in the ini...