CVE-2021-34867

CVE-2021-34867 refers to a local privilege escalation in Parallels Desktop 16.1.3-49160, arising from the Toolgate component. The flaw is caused by insufficient validation of user-supplied data, leading to an uncontrolled memory allocation and the ability to execute arbitrary code with hypervisor...

CVE-2021-34867

This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.1.3-49160. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists withi...

ALPINE-CVE-2022-23034

A PV guest could DoS Xen while unmapping a grant To address XSA-380, reference counting was introduced for grant mappings for the case where a PV guest would have the IOMMU enabled. PV guests can request two forms of mappings. When both are in use for any individual mapping, unmapping of such a...

CVE-2022-23034

A PV guest could DoS Xen while unmapping a grant To address XSA-380, reference counting was introduced for grant mappings for the case where a PV guest would have the IOMMU enabled. PV guests can request two forms of mappings. When both are in use for any individual mapping, unmapping of such a...

CVE-2022-23034

A PV guest could DoS Xen while unmapping a grant To address XSA-380, reference counting was introduced for grant mappings for the case where a PV guest would have the IOMMU enabled. PV guests can request two forms of mappings. When both are in use for any individual mapping, unmapping of such a...

DEBIAN-CVE-2022-23034

A PV guest could DoS Xen while unmapping a grant To address XSA-380, reference counting was introduced for grant mappings for the case where a PV guest would have the IOMMU enabled. PV guests can request two forms of mappings. When both are in use for any individual mapping, unmapping of such a...

Design/Logic Flaw

A PV guest could DoS Xen while unmapping a grant To address XSA-380, reference counting was introduced for grant mappings for the case where a PV guest would have the IOMMU enabled. PV guests can request two forms of mappings. When both are in use for any individual mapping, unmapping of such a...

UBUNTU-CVE-2022-23034

A PV guest could DoS Xen while unmapping a grant To address XSA-380, reference counting was introduced for grant mappings for the case where a PV guest would have the IOMMU enabled. PV guests can request two forms of mappings. When both are in use for any individual mapping, unmapping of such a...

CVE-2022-23034

A PV guest could DoS Xen while unmapping a grant To address XSA-380, reference counting was introduced for grant mappings for the case where a PV guest would have the IOMMU enabled. PV guests can request two forms of mappings. When both are in use for any individual mapping, unmapping of such a...

CVE-2022-23034

CVE-2022-23034 affects the Xen hypervisor. A PV guest could cause a Denial of Service by unmapping a grant when IOMMU is enabled; a reference count mis-decrement could trigger a hypervisor bug check (underflow). The issue is one of several Xen vulnerabilities reported across multiple distros (Deb...

CVE-2022-23034

A PV guest could DoS Xen while unmapping a grant To address XSA-380, reference counting was introduced for grant mappings for the case where a PV guest would have the IOMMU enabled. PV guests can request two forms of mappings. When both are in use for any individual mapping, unmapping of such a...

Xen 数字错误漏洞

Xen is an open source virtual machine monitor product from the University of Cambridge, UK. The product enables different and incompatible operating systems to run on the same computer and supports runtime migration to ensure uptime and avoid downtime. A numeric error vulnerability exists in xen,...

Oracle VirtualBox TFTP Server Directory Traversal Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of Oracle VirtualBox. An attacker must first obtain the ability to execute low-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within t...

The vulnerability of Xen cross-platform hypervisors, related to information disclosure, allows attackers to gain access to confidential data.

The vulnerability of the cross-platform Xen hypervisor is related to the disclosure of information. Exploiting this vulnerability can allow a malicious actor to gain access to confidential data...

The vulnerability of Xen hypervisors on x86 Intel systems, related to the lack of a mechanism for managing privileges, allows attackers to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of Xen hypervisors on x86 Intel systems is related to the lack of a mechanism for managing privileges. Exploiting this vulnerability can allow an attacker to access confidential data, compromise its integrity, and even cause service failures...

The vulnerability of Xen cross-platform hypervisors relates to insecure management of privileges, allowing attackers to access confidential data and cause service failures.

The vulnerability of the cross-platform Xen hypervisor is related to insecure management of privileges. Exploiting this vulnerability can allow attackers to access confidential data and also cause service failures...

The vulnerability of Xen hypervisors that run on multiple platforms, related to deficiencies in access control to ports, allows attackers to gain access to confidential data.

The vulnerability of the cross-platform hypervisor Xen is related to deficiencies in access control for ports. Exploiting this vulnerability can allow an attacker to gain access to confidential data...

OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has evaluated the severity of this issue to be in the Critical severity range with a maximum CVSSv3 base score of 9.8.

...

F5 Networks BIG-IP : BIG-IP VE vulnerability (K53442005)

The version of F5 Networks BIG-IP installed on the remote host is prior to 13.1.5 / 14.1.4.5 / 15.1.4.1 / 16.1.2 / 17.0.0. It is, therefore, affected by a vulnerability as referenced in the K53442005 advisory. - On version 16.1.x before 16.1.2, 15.1.x before 15.1.4.1, 14.1.x before 14.1.4.5, and...

The vulnerability of the cross-platform hypervisor Xen, related to the disclosure of information through incompatibilities, allows attackers to gain access to confidential data.

The vulnerability of the cross-platform hypervisor Xen is related to the exposure of information through incompatibility. Exploiting this vulnerability can allow an attacker to gain access to confidential data...