CVE-2022-49726 clocksource: hyper-v: unexport __init-annotated hv_init_clocksource()

In the Linux kernel, the following vulnerability has been resolved: clocksource: hyper-v: unexport init-annotated hvinitclocksource EXPORTSYMBOL and init is a bad combination because the .init.text section is freed up after the initialization. Hence, modules cannot use symbols annotated init. The...

CVE-2022-49054

The CVE-2022-49054 entry concerns the Linux kernel, specifically the Hyper-V vmbus driver. A fix was applied to deactivate sysctl_record_panic_msg by default in isolated guests because hv_panic_page may reveal guest-sensitive information when dumped to Hyper-V. The change also updates comments in...

CVE-2022-49054 Drivers: hv: vmbus: Deactivate sysctl_record_panic_msg by default in isolated guests

In the Linux kernel, the following vulnerability has been resolved: Drivers: hv: vmbus: Deactivate sysctlrecordpanicmsg by default in isolated guests hvpanicpage might contain guest-sensitive information, do not dump it over to Hyper-V by default in isolated guests. While at it, update some...

CVE-2022-49054 Drivers: hv: vmbus: Deactivate sysctl_record_panic_msg by default in isolated guests

In the Linux kernel, the following vulnerability has been resolved: Drivers: hv: vmbus: Deactivate sysctlrecordpanicmsg by default in isolated guests hvpanicpage might contain guest-sensitive information, do not dump it over to Hyper-V by default in isolated guests. While at it, update some...

CVE-2022-49054

In the Linux kernel, the following vulnerability has been resolved: Drivers: hv: vmbus: Deactivate sysctlrecordpanicmsg by default in isolated guests hvpanicpage might contain guest-sensitive information, do not dump it over to Hyper-V by default in isolated guests. While at it, update some...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the fact that hvpanicpage may contain sensitive information that should not be dumped to Hyper-V in isolated...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel, which stems from the hvinitclocksource function of the hyper-v clock source being incorrectly exported...

The vulnerability of the Dell VxRail hyper-converged infrastructure, related to the unencrypted storage of critical information, allows a intruder to disclose protected data.

The vulnerability of the Dell VxRail hyper-converged infrastructure is related to the unencrypted storage of critical information. Exploiting this vulnerability could allow an attacker to disclose the protected data...

PT-2025-14358

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A hang issue in the kdump kernel has been resolved when running on Hyper-V Gen 2 VMs. The problem occurs when the hyperv fb driver moves the framebuffer to a different MMIO address due t...

About Elevation of Privilege – Windows Hyper-V NT Kernel Integration VSP (CVE-2025-21333, CVE-2025-21334, CVE-2025-21335) vulnerability

About Elevation of Privilege - Windows Hyper-V NT Kernel Integration VSP CVE-2025-21333, CVE-2025-21334, CVE-2025-21335 vulnerability. These three vulnerabilities were disclosed as part of Microsoft's January Patch Tuesday and share the same description. They were found in a component used for...

CVE-2022-39294

conduit-hyper integrates a conduit application with the hyper server. Prior to version 0.4.2, conduit-hyper did not check any limit on a request's length before calling hyper::body::tobytes. An attacker could send a malicious request with an abnormally large Content-Length, which could lead to a...

Hyper-V Resilient Change Tracking Performance Issues

Challenge General Hyper-V OS performance degradation can occur when using a backup solution to export Hyper-V VM snapshots during backup operations. Solution Based on investigations between Veeam and Microsoft, two underlying causes have been identified. Resilient Change Tracking Resilient Change...

Cloudflare Mitigates Massive 5.6 Tbps Mirai-Variant DDoS Attack

Cloudflare mitigates a record-breaking 5.6 Tbps DDoS attack, highlighting the growing threat of hyper-volumetric assaults. Learn about the…...

CVE-2025-23695

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in kinlane CtyGrid Hyp3rL0cal Search hyp3rl0cal-city-search allows Reflected XSS.This issue affects CtyGrid Hyp3rL0cal Search: from n/a through = 0.1.1.1...

Microsoft Windows Hyper-V NT Kernel Integration VSP elevation of privilege vulnerability (CNVD-2025-05240)

Microsoft Windows Hyper-V is a tool from Microsoft USA that provides hardware virtualization. An elevation of privilege vulnerability exists in Microsoft Windows Hyper-V NT Kernel Integration VSP, which can be exploited by an attacker to gain elevated privileges on a system...

Microsoft Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability

Microsoft Windows Hyper-V is a tool from Microsoft USA that provides hardware virtualization. An elevation of privilege vulnerability exists in Microsoft Windows Hyper-V NT Kernel Integration VSP, which can be exploited by an attacker to gain elevated privileges on a system...

The vulnerability of the Dell VxRail hyper-converged infrastructure, related to the unencrypted storage of critical information, allows a intruder to disclose protected data.

The vulnerability of the Dell VxRail hyper-converged infrastructure is related to the unencrypted storage of critical information. Exploiting this vulnerability could allow an attacker to disclose the protected data...

3 Actively Exploited Zero-Day Flaws Patched in Microsoft's Latest Security Update

Microsoft kicked off 2025 with a new set of patches for a total of 161 security vulnerabilities across its software portfolio, including three zero-days that have been actively exploited in attacks. Of the 161 flaws, 11 are rated Critical and 149 are rated Important in severity. One other flaw, a...

The vulnerability of the VSP Elevation function in the hardware virtualization technology of Windows Hyper-V operating systems allows attackers to elevate their privileges to the SYSTEM level.

The vulnerability of the VSP Elevation function in the hardware virtualization layer of Windows Hyper-V operating systems is related to buffer overflows in dynamic memory. Exploiting this vulnerability can allow an attacker to elevate their privileges to the SYSTEM level...

The vulnerability of the VSP Elevation function in the hardware virtualization technology of Windows Hyper-V operating systems allows attackers to elevate their privileges to the SYSTEM level.

The vulnerability of the VSP Elevation function in the hardware virtualization layer of Windows Hyper-V operating systems involves the possibility of exploiting memory after it is freed. Exploiting this vulnerability can allow an attacker to elevate their privileges to the SYSTEM level...