Lucene search
K

5622 matches found

Cvelist
Cvelist
added 2024/08/13 4:53 p.m.26 views

CVE-2023-20584

IOMMU improperly handles certain special address ranges with invalid device table entries DTEs, which may allow an attacker with privileges and a compromised Hypervisor to induce DTE faults to bypass RMP checks in SEV-SNP, potentially leading to a loss of guest integrity...

5.3CVSS0.00174EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2024/08/13 4:53 p.m.18 views

CVE-2023-20584

IOMMU improperly handles certain special address ranges with invalid device table entries DTEs, which may allow an attacker with privileges and a compromised Hypervisor to induce DTE faults to bypass RMP checks in SEV-SNP, potentially leading to a loss of guest integrity...

6CVSS5.5AI score0.00174EPSS
Exploits0
OSV
OSV
added 2024/08/13 12:13 a.m.12 views

USN-6957-1 linux-oracle-5.15 vulnerabilities

Benedict Schlüter, Supraja Sridhara, Andrin Bertschi, and Shweta Shinde discovered that an untrusted hypervisor could inject malicious VC interrupts and compromise the security guarantees of AMD SEV-SNP. This flaw is known as WeSee. A local attacker in control of the hypervisor could use this to...

9.8CVSS7.2AI score0.01305EPSS
Exploits2References57
Ubuntu
Ubuntu
added 2024/08/13 12:13 a.m.63 views

USN-6957-1: Linux kernel (Oracle) vulnerabilities

Benedict Schlüter, Supraja Sridhara, Andrin Bertschi, and Shweta Shinde discovered that an untrusted hypervisor could inject malicious VC interrupts and compromise the security guarantees of AMD SEV-SNP. This flaw is known as WeSee. A local attacker in control of the hypervisor could use this to...

9.8CVSS7.7AI score0.01305EPSS
Exploits2
Positive Technologies
Positive Technologies
added 2024/08/13 12:0 a.m.5 views

PT-2024-11959 · Drtm +2 · Drtm +2

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue involves improper re-initialization of IOMMU during the DRTM event, which may permit an untrusted platform configuration to persist. This coul...

10CVSS6AI score0.00299EPSS
Exploits0References10
CNNVD
CNNVD
added 2024/08/13 12:0 a.m.4 views

AMD Secure Processor和AMD Secure Encrypted Virtualization 安全漏洞

AMD Secure Encrypted Virtualization and AMD Secure Processor ASP are both products of Ultraviolet Semiconductor AMD, Inc.AMD Secure Encrypted Virtualization is a software application. Hardware-accelerated memory encryption to protect data in use.AMD Secure Processor is a standalone ARM Coretex-A5...

10CVSS6.4AI score0.00299EPSS
Exploits0References3
Amazon
Amazon
added 2024/08/13 12:0 a.m.11 views

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: net: dsa: fix panic when DSA master device unbinds on shutdown CVE-2022-48808 In the Linux kernel, the following vulnerability has been resolved: nfsd: call oprelease, even when opfunc returns an error...

9.1CVSS6.8AI score0.01401EPSS
Exploits0
OpenVAS
OpenVAS
added 2024/08/13 12:0 a.m.8 views

Ubuntu: Security Advisory (USN-6957-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.2AI score0.01305EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2024/08/13 12:0 a.m.47 views

Ubuntu 20.04 LTS : Linux kernel (Oracle) vulnerabilities (USN-6957-1)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6957-1 advisory. Benedict Schlter, Supraja Sridhara, Andrin Bertschi, and Shweta Shinde discovered that an untrusted hypervisor could inject malicious VC interrupts and...

9.8CVSS7.8AI score0.01305EPSS
Exploits2References57
Tenable Nessus
Tenable Nessus
added 2024/08/13 12:0 a.m.50 views

Ubuntu 20.04 LTS / 22.04 LTS : Linux kernel (Azure) vulnerabilities (USN-6956-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6956-1 advisory. Benedict Schlter, Supraja Sridhara, Andrin Bertschi, and Shweta Shinde discovered that an untrusted hypervisor could inject malicious VC...

8.1CVSS7.3AI score0.01305EPSS
Exploits2References56
Tenable Nessus
Tenable Nessus
added 2024/08/13 12:0 a.m.76 views

Ubuntu 24.04 LTS : Linux kernel (Azure) vulnerabilities (USN-6952-2)

"The remote Ubuntu 24.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6952-2 advisory. Benedict Schlter, Supraja Sridhara, Andrin Bertschi, and Shweta Shinde discovered that an untrusted hypervisor could inject malicious VC interrupts and...

9.8CVSS7.8AI score0.01483EPSS
Exploits3References233
Ubuntu
Ubuntu
added 2024/08/12 6:5 p.m.100 views

USN-6955-1: Linux kernel (OEM) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM32 architecture; - ARM64 architecture; - M68K architecture; - OpenRISC architecture; - PowerPC architecture; -...

9.8CVSS7.1AI score0.01483EPSS
Exploits3
OSV
OSV
added 2024/08/12 6:5 p.m.20 views

USN-6955-1 linux-oem-6.8 vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM32 architecture; - ARM64 architecture; - M68K architecture; - OpenRISC architecture; - PowerPC architecture; -...

9.8CVSS6.6AI score0.01483EPSS
Exploits3References226
OSV
OSV
added 2024/08/09 12:6 a.m.10 views

USN-6952-1 linux-nvidia-lowlatency, linux-oracle vulnerabilities

Benedict Schlüter, Supraja Sridhara, Andrin Bertschi, and Shweta Shinde discovered that an untrusted hypervisor could inject malicious VC interrupts and compromise the security guarantees of AMD SEV-SNP. This flaw is known as WeSee. A local attacker in control of the hypervisor could use this to...

9.8CVSS7.1AI score0.01483EPSS
Exploits3References234
Tenable Nessus
Tenable Nessus
added 2024/08/09 12:0 a.m.162 views

Ubuntu 24.04 LTS : Linux kernel vulnerabilities (USN-6952-1)

"The remote Ubuntu 24.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6952-1 advisory. Benedict Schlter, Supraja Sridhara, Andrin Bertschi, and Shweta Shinde discovered that an untrusted hypervisor could inject malicious VC interrupts and...

9.8CVSS7.8AI score0.01483EPSS
Exploits3References233
OSV
OSV
added 2024/08/08 9:48 p.m.8 views

USN-6949-1 linux, linux-aws, linux-gcp, linux-gke, linux-ibm, linux-nvidia, linux-nvidia-6.8 vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM32 architecture; - ARM64 architecture; - M68K architecture; - OpenRISC architecture; - PowerPC architecture; -...

9.8CVSS6.6AI score0.01483EPSS
Exploits3References227
Tenable Nessus
Tenable Nessus
added 2024/08/08 12:0 a.m.22 views

RHEL 8 : Red Hat OpenStack Platform 16.1.9 (openstack-nova) (RHSA-2024:5113)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:5113 advisory. OpenStack Compute codename Nova is open source software designed to provision and manage large networks of virtual machines,creating a redundant and...

6.5CVSS6AI score0.00941EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2024/08/08 12:0 a.m.52 views

Ubuntu 22.04 LTS / 24.04 LTS : Linux kernel vulnerabilities (USN-6949-1)

"The remote Ubuntu 22.04 LTS / 24.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6949-1 advisory. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update...

9.8CVSS7.2AI score0.01483EPSS
Exploits3References226
OpenVAS
OpenVAS
added 2024/08/06 12:0 a.m.21 views

Fedora: Security Advisory (FEDORA-2024-169a1cc589)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.6AI score0.08555EPSS
Exploits0References2
OSV
OSV
added 2024/08/05 4:15 p.m.2 views

CVE-2024-21978

Improper input validation in SEV-SNP could allow a malicious hypervisor to read or overwrite guest memory potentially leading to data leakage or data corruption...

7.9CVSS5.8AI score0.00493EPSS
Exploits1References1
Rows per page
Query Builder