Lucene search
+L

250 matches found

RedhatCVE
RedhatCVE
added 2026/02/14 1:26 a.m.6 views

CVE-2024-21961

Improper restriction of operations within the bounds of a memory buffer in PCIe® Link could allow an attacker with access to a guest virtual machine to potentially perform a denial of service attack against the host resulting in loss of availability...

6CVSS5.8AI score0.00307EPSS
Exploits0References1
NVD
NVD
added 2026/02/13 12:16 a.m.7 views

CVE-2024-21961

Improper restriction of operations within the bounds of a memory buffer in PCIe® Link could allow an attacker with access to a guest virtual machine to potentially perform a denial of service attack against the host resulting in loss of availability...

6CVSS0.00307EPSS
Exploits0References2
CVE
CVE
added 2026/02/12 11:45 p.m.11 views

CVE-2024-21961

CVE-2024-21961: Severity 6.0 (MEDIUM) CVSS v4 shows network vector with attacker in a guest VM who can trigger a denial-of-service on the host via improper restriction of operations within PCIe Link memory buffers. Connected sources (Red Hat, NVD, AMD bulletins) confirm the flaw exists in PCIe Li...

6CVSS5.8AI score0.00307EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/02/12 11:45 p.m.9 views

CVE-2024-21961

Improper restriction of operations within the bounds of a memory buffer in PCIe® Link could allow an attacker with access to a guest virtual machine to potentially perform a denial of service attack against the host resulting in loss of availability...

6CVSS5.8AI score0.00307EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/02/12 11:45 p.m.30 views

CVE-2024-21961

Improper restriction of operations within the bounds of a memory buffer in PCIe® Link could allow an attacker with access to a guest virtual machine to potentially perform a denial of service attack against the host resulting in loss of availability...

6CVSS0.00307EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/02/12 11:45 p.m.5 views

CVE-2024-21961

Improper restriction of operations within the bounds of a memory buffer in PCIe® Link could allow an attacker with access to a guest virtual machine to potentially perform a denial of service attack against the host resulting in loss of availability...

6CVSS5.8AI score0.00307EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/02/12 12:0 a.m.10 views

PT-2026-7945

Improper restriction of operations within the bounds of a memory buffer in PCIe® Link could allow an attacker with access to a guest virtual machine to potentially perform a denial of service attack against the host resulting in loss of availability...

6CVSS5.8AI score0.00307EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/02/11 2:29 p.m.29 views

CVE-2025-48508

Improper Hardware reset flow logic in the GPU GFX Hardware IP block could allow a privileged attacker in a guest virtual machine to control reset operation potentially causing host or GPU crash or reset resulting in denial of service...

6CVSS0.00149EPSS
Exploits0References1
CVE
CVE
added 2026/02/11 2:29 p.m.19 views

CVE-2025-48508

CVE-2025-48508 concerns an issue in the GPU GFX Hardware IP block where improper hardware reset flow logic could let a privileged attacker in a guest VM take control of the reset operation, potentially crashing the host or GPU and causing denial of service. The vulnerability is described with a l...

6CVSS5.5AI score0.00149EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/11 2:29 p.m.6 views

CVE-2025-48508

Improper Hardware reset flow logic in the GPU GFX Hardware IP block could allow a privileged attacker in a guest virtual machine to control reset operation potentially causing host or GPU crash or reset resulting in denial of service...

6CVSS5.5AI score0.00149EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/06 1:25 a.m.6 views

CVE-2026-24843

melange allows users to build apk packages using declarative pipelines. In version 0.11.3 to before 0.40.3, an attacker who can influence the tar stream from a QEMU guest VM could write files outside the intended workspace directory on the host. The retrieveWorkspace function extracts tar entries...

8.4CVSS5.3AI score0.00167EPSS
Exploits0References1
EUVD
EUVD
added 2026/02/04 7:31 p.m.5 views

EUVD-2026-5373

melange allows users to build apk packages using declarative pipelines. In version 0.11.3 to before 0.40.3, an attacker who can influence the tar stream from a QEMU guest VM could write files outside the intended workspace directory on the host. The retrieveWorkspace function extracts tar entries...

8.2CVSS5.4AI score0.00167EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/02/03 11:47 p.m.7 views

melange QEMU runner could write files outside workspace directory

An attacker who can influence the tar stream from a QEMU guest VM could write files outside the intended workspace directory on the host. The retrieveWorkspace function extracts tar entries without validating that paths stay within the workspace, allowing Path Traversal via ../ sequences. Fix:...

8.4CVSS5.4AI score0.00167EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2026/02/03 11:47 p.m.5 views

GHSA-QXX2-7H4C-83F4 melange QEMU runner could write files outside workspace directory

An attacker who can influence the tar stream from a QEMU guest VM could write files outside the intended workspace directory on the host. The retrieveWorkspace function extracts tar entries without validating that paths stay within the workspace, allowing Path Traversal via ../ sequences. Fix:...

8.2CVSS5.5AI score0.00167EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/01/20 2:46 p.m.5 views

open-vm-tools: Insecure file handling

A vulnerability was found in open-vm-tools. A malicious actor with non-administrative privileges on a guest virtual machine VM may tamper with the local files to trigger insecure file operations within that VM...

6.1CVSS5.7AI score0.00255EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.6 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004477)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004477 advisory. KVM in the Linux kernel on Power8 processors has a conflicting use of HSTATEHOSTR1 to store r1 state in kvmppchventry plus in kvmppcsave,restoretm, leading to a stac...

6.5CVSS6.2AI score0.00347EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001588)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001588 advisory. KVM in the Linux kernel on Power8 processors has a conflicting use of HSTATEHOSTR1 to store r1 state in kvmppchventry plus in kvmppcsave,restoretm, leading to a stac...

6.5CVSS6.2AI score0.00347EPSS
Exploits1References8
Ubuntu
Ubuntu
added 2026/01/09 7:30 p.m.12 views

USN-7940-2: Linux kernel (Azure, N-Series) vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

8.8CVSS7.4AI score0.01345EPSS
Exploits10
Ubuntu
Ubuntu
added 2025/12/16 8:58 p.m.11 views

USN-7939-1: Linux kernel (Azure) vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

7.8CVSS7.6AI score0.01345EPSS
Exploits8
Ubuntu
Ubuntu
added 2025/12/05 10:59 a.m.11 views

USN-7910-2: Linux kernel (Azure) vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

7.8CVSS7.5AI score0.0037EPSS
Exploits3
Rows per page
Query Builder