123 matches found
CVE-2026-41464
ProjeQtor versions 7.0 through 12.4.3 contain a missing authorization vulnerability in the objectDetail.php endpoint that allows authenticated users with guest-level privileges to retrieve sensitive data belonging to other users including password hashes and API keys. Attackers can bypass access...
CVE-2026-22716
Out-of-bound write vulnerability in VMware Workstation 25H1 and below on any platform allows an actor with non-administrative privileges on a guest VM to terminate certain Workstation processes...
EUVD-2026-9043
Out-of-bound read vulnerability in VMware Workstation 25H1 and below on any platform allows an actor with non-administrative privileges on a guest VM to obtain limited information disclosure from the machine where VMware Workstation is installed...
CVE-2026-22716
Out-of-bound write vulnerability in VMware Workstation 25H1 and below on any platform allows an actor with non-administrative privileges on a guest VM to terminate certain Workstation processes...
CVE-2026-22716
Out-of-bound write vulnerability in VMware Workstation 25H1 and below on any platform allows an actor with non-administrative privileges on a guest VM to terminate certain Workstation processes...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001085)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001085 advisory. The translatedesc function in drivers/vhost/vhost.c in the Linux kernel before 3.7 does not properly handle cross-region descriptors, which allows guest OS users to...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000827)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000827 advisory. The kvmiommumappages function in virt/kvm/iommu.c in the Linux kernel through 3.17.2 miscalculates the number of pages during the handling of a mapping failure, whic...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000826)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000826 advisory. The emsysenter function in arch/x86/kvm/emulate.c in the Linux kernel before 3.18.5, when the guest OS lacks SYSENTER MSR initialization, allows guest OS users to ga...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001794)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001794 advisory. The translatedesc function in drivers/vhost/vhost.c in the Linux kernel before 3.7 does not properly handle cross-region descriptors, which allows guest OS users to...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002101)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002101 advisory. The emsysenter function in arch/x86/kvm/emulate.c in the Linux kernel before 3.18.5, when the guest OS lacks SYSENTER MSR initialization, allows guest OS users to ga...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001849)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001849 advisory. The emsysenter function in arch/x86/kvm/emulate.c in the Linux kernel before 3.18.5, when the guest OS lacks SYSENTER MSR initialization, allows guest OS users to ga...
EUVD-2013-0329
Malware in sbrugna...
EUVD-2018-2580
Malware in sbrugna...
EUVD-2014-3902
Malware in sbrugna...
EUVD-2021-26994
Malware in sbrugna...
EUVD-2011-2201
Malware in sbrugna...
EUVD-2018-17452
Malware in sbrugna...
EUVD-2023-42236
Malicious code in bioql PyPI...
CVE-2025-41244
A flaw was found in VMWare open-vm-tools. A malicious actor with non-administrative privileges on a guest Virtual Machine VM could exploit this vulnerability to gain root privileges on the VM. The issue lies in the service-discovery plugin logic, which can execute attacker-controlled binaries fro...
CVE-2021-23029
On version 16.0.x before 16.0.1.2, insufficient permission checks may allow authenticated users with guest privileges to perform Server-Side Request Forgery SSRF attacks through F5 Advanced Web Application Firewall WAF and the BIG-IP ASM Configuration utility. Note: Software versions which have...