CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Citrix•added 2025/12/08 2:0 a.m.•6 views

XenServer Security Update for CVE-2025-62626

Severity: Medium Description of Problem A hardware issue has been identified in AMD Zen 5 CPU devices that may cause those CPUs to return a value of zero more frequently than statistically expected when asked to generate a random value. This may compromise e.g. cryptographic keys that are generat...

7.2CVSS6.7AI score0.00018EPSS

Tenable Nessus•added 2025/11/20 12:0 a.m.•6 views

TencentOS Server 4: microcode_ctl (TSSA-2024:0564)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0564 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

8.2CVSS7.3AI score0.00204EPSS

Exploits0References10

RedHat Linux•added 2025/11/10 4:21 a.m.•4 views

Moderate: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

7.8CVSS7AI score0.00249EPSS

Exploits0References3

OpenVAS•added 2025/10/10 12:0 a.m.•2 views

Mageia: Security Advisory (MGASA-2025-0236)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.9CVSS6.9AI score0.00034EPSS

Tenable Nessus•added 2025/10/07 12:0 a.m.•3 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: microcode_ctl (UTSA-2025-986086)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986086 advisory. Improper input validation in UEFI firmware for some IntelR Processors may allow a privileged user to potentially enable escalation of privilege via local access...

8.7CVSS7.2AI score0.00022EPSS

Rockylinux•added 2025/10/04 12:11 a.m.•6 views

microcode_ctl security update

An update is available for microcodectl. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The microcodectl packages provide microcode updates for Intel and AMD...

6.8CVSS6.6AI score0.0002EPSS

OSV•added 2025/10/04 12:11 a.m.•6 views

RLSA-2025:7043 Moderate: microcode_ctl security update

The microcodectl packages provide microcode updates for Intel and AMD processors. Security Fixes: microcodectl: Improper input validation in UEFI firmware CVE-2024-28047 microcodectl: Insufficient granularity of access control in UEFI firmware CVE-2024-39279 microcodectl: mproper initialization i...

6.5CVSS5.7AI score0.0002EPSS

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-9538

Malicious code in bioql PyPI...

7.8CVSS7.7AI score0.00039EPSS

Exploits0References9

Amazon•added 2025/09/29 12:0 a.m.•6 views

Important: microcode_ctl

Issue Overview: Insufficient granularity of access control in the OOB-MSM for some IntelR XeonR 6 Scalable processors may allow a privileged user to potentially enable escalation of privilege via adjacent access. CVE-2025-22839 Sequence of processor instructions leads to unexpected behavior for...

7.9CVSS7.1AI score0.00029EPSS

OSV•added 2025/09/23 3:4 p.m.•3 views

CLSA-2025-1758639838 Update of microcode_ctl

Update Intel CPU microcode to 20250812: - Addition of cpuid:806F8/0x10 SPR-HBM B3 microcode in microcode.dat at revision 0x2c000401; - Addition of cpuid:806F8/0x87 SPR-SP E5/S3 microcode in microcode.dat at revision 0x2b000643; - Addition of cpuid:90672/0x07 ADL-HX/S 8+8 C0 microcode in...

5.7AI score

Amazon•added 2025/09/16 12:0 a.m.•4 views

Important: microcode_ctl

Issue Overview: A potential security vulnerability in some Intelr Processors may allow information disclosure. Intel is releasing microcode updates and prescriptive guidance to mitigate this potential vulnerability. Info:...

7.8CVSS7.3AI score0.00249EPSS

OSV•added 2025/09/15 8:31 a.m.•3 views

CLSA-2025-1757925072 Update of microcode_ctl

5.7AI score

OSV•added 2025/09/12 4:0 p.m.•1 views

CLSA-2025-1757692837 microcode_ctl: Fix of 9 CVEs

Update Intel CPU microcode to 20250812, addresses: CVE-2024-28047, CVE-2024-31157, CVE-2024-39279, CVE-2024-28956, CVE-2024-43420, CVE-2024-45332, CVE-2025-24495, CVE-2025-20623, CVE-2025-20012 - Addition of cpuid:806F8/0x10 SPR-HBM B3 microcode in microcode.dat at revision 0x2c000401; - Addition...

6.8CVSS6.6AI score0.00249EPSS

OSV•added 2025/09/12 7:36 a.m.•2 views

CLSA-2025-1757662580 Update of microcode_ctl

5.7AI score

OpenVAS•added 2025/09/11 12:0 a.m.•2 views

SUSE: Security Advisory (SUSE-SU-2025:03116-1)

7.9CVSS6.8AI score0.00029EPSS

Oracle linux•added 2025/09/10 12:0 a.m.•7 views

microcode_ctl security update

4:20250512-1.0.1 - enable use with ueknext and UEK8 kernels - don't bother calling dracut if virtualized Orabug: 35710077 - ensure UEK also rebuilds initramfs Orabug: 34280058 - add support for UEK7 kernels - enable early update for 06-4f-01 - remove no longer appropriate caveats for 06-2d-07 and...

5.7CVSS9AI score0.00249EPSS