Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

47 matches found

Vulnrichment
Vulnrichmentadded 2023/02/17 12:0 a.m.6 views

CVE-2021-32846 Moby HyperKit uninitialized memory use in virtio-sock pci_vtsock_proc_tx

HyperKit is a toolkit for embedding hypervisor capabilities in an application. In versions 0.20210107, function pcivtsockproctx in virtio-sock can lead to to uninitialized memory use. In this situation, there is a check for the return value to be less or equal to VTSOCKMAXSEGS, but that check is...

7.7CVSS7.6AI score0.00048EPSS
Exploits0References3
CVE
CVEadded 2023/02/17 12:0 a.m.44 views

CVE-2021-32845

HyperKit versions 0.20210107 and earlier are affected by a vulnerability in pci_vtrnd_notify where the return value of vq_getchain is not checked. This can result in an uninitialized struct iovec (iov) being used to read memory, potentially causing a guest to crash the host and enable memory corr...

7.8CVSS7.2AI score0.00072EPSS
Exploits0References3Affected Software1
CNNVD
CNNVDadded 2023/02/17 12:0 a.m.1 views

HyperKit 安全漏洞

HyperKit is a Moby open source toolkit for embedding virtual machine monitor functionality in applications. HyperKit 0.20210107 and earlier versions have a security vulnerability that stems from qnotify in pcivtrndnotify being unable to check the return value of vqgetchain, which results in the...

7.8CVSS7.4AI score0.00072EPSS
Exploits0References4
CNNVD
CNNVDadded 2023/02/17 12:0 a.m.2 views

HyperKit 代码问题漏洞

HyperKit is a Moby open source toolkit for embedding virtual machine monitor functionality in applications. A security vulnerability exists in HyperKit 0.20210107 and earlier versions, which stems from the fact that virtio.c has a call to vccfgread that does not check for null, and the call cause...

6.2CVSS5.7AI score0.00062EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2023/02/17 12:0 a.m.4 views

CVE-2021-32844

HyperKit is a toolkit for embedding hypervisor capabilities in an application. In versions 0.20210107 and prior of HyperKit, vipciwrite has is a call to vccfgwrite that does not check for null which when called makes the host crash. This issue may lead to a guest crashing the host causing a denia...

6.2CVSS6.3AI score0.00062EPSS
Exploits0References3
CVE
CVEadded 2023/02/17 12:0 a.m.40 views

CVE-2021-32844

CVE-2021-32844 affects HyperKit up to version 0.20210107. The vulnerability originates from a null-pointer check omission in the vi_pci_write path calling vc_cfgwrite, which can cause the host to crash and potentially lead to a denial of service. The issue is fixed in commit 451558fe8aaa8b24e02e3...

6.2CVSS5.3AI score0.00062EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologiesadded 2023/02/17 12:0 a.m.1 views

PT-2023-12179 · Hyperkit · Hyperkit

Name of the Vulnerable Software and Affected Versions: HyperKit versions 0.20210107 and prior Description: HyperKit is a toolkit for embedding hypervisor capabilities in an application. The implementation of qnotify at pci vtrnd notify fails to check the return value of vq getchain, leading to...

7.8CVSS7.4AI score0.00072EPSS
Exploits0References7
Rows per page
Query Builder