Lucene search
+L

457 matches found

OSV
OSV
added 2024/02/19 5:15 a.m.1 views

DEBIAN-CVE-2024-26327

An issue was discovered in QEMU 7.1.0 through 8.2.1. registervfs in hw/pci/pciesriov.c mishandles the situation where a guest writes NumVFs greater than TotalVFs, leading to a buffer overflow in VF implementations...

5.3CVSS7AI score0.00529EPSS
Exploits0References1
OSV
OSV
added 2024/02/19 5:15 a.m.5 views

UBUNTU-CVE-2024-26327

An issue was discovered in QEMU 7.1.0 through 8.2.1. registervfs in hw/pci/pciesriov.c mishandles the situation where a guest writes NumVFs greater than TotalVFs, leading to a buffer overflow in VF implementations...

5.3CVSS7.1AI score0.00529EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2023/12/13 2:15 a.m.4 views

CVE-2023-47579

Relyum RELY-PCIe 22.2.1 devices suffer from a system group misconfiguration, allowing read access to the central password hash file of the operating system...

7.5CVSS7.1AI score0.00583EPSS
Exploits0References2
OSV
OSV
added 2023/12/13 2:15 a.m.7 views

CVE-2023-47575

An issue was discovered on Relyum RELY-PCIe 22.2.1 and RELY-REC 23.1.0 devices. The web interfaces of the Relyum devices are susceptible to reflected XSS...

6.1CVSS5.8AI score0.00406EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/12/13 12:0 a.m.5 views

Relyum RELY-PCIe Security Vulnerability

The Relyum RELY-PCIe is an intelligent pluggable board from the Spanish company Relyum. A security vulnerability exists in Relyum RELY-PCIe version 22.2.1, RELY-REC version 23.1.0. An attacker can exploit the vulnerability to perform cross-site scripting attacks...

6.1CVSS6.2AI score0.00406EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2023/11/30 5:56 p.m.71 views

USN-6494-2: Linux kernel vulnerabilities

Yu Hao discovered that the UBI driver in the Linux kernel did not properly check for MTD with zero erasesize during device attachment. A local privileged attacker could use this to cause a denial of service system crash. CVE-2023-31085 Lucas Leong discovered that the netfilter subsystem in the...

7.8CVSS7.3AI score0.00856EPSS
Exploits1
Ubuntu
Ubuntu
added 2023/11/30 5:38 p.m.73 views

USN-6495-2: Linux kernel vulnerabilities

Yu Hao discovered that the UBI driver in the Linux kernel did not properly check for MTD with zero erasesize during device attachment. A local privileged attacker could use this to cause a denial of service system crash. CVE-2023-31085 Manfred Rudigier discovered that the IntelR PCI-Express Gigab...

7.5CVSS7.5AI score0.00544EPSS
Exploits0
NVD
NVD
added 2023/11/28 9:15 p.m.24 views

CVE-2023-29063

The FACSChorus workstation does not prevent physical access to its PCI express PCIe slots, which could allow a threat actor to insert a PCI card designed for memory capture. A threat actor can then isolate sensitive information such as a BitLocker encryption key from a dump of the workstation RAM...

2.4CVSS0.0018EPSS
Exploits0References1
OSV
OSV
added 2023/11/28 9:15 p.m.6 views

CVE-2023-29063

The FACSChorus workstation does not prevent physical access to its PCI express PCIe slots, which could allow a threat actor to insert a PCI card designed for memory capture. A threat actor can then isolate sensitive information such as a BitLocker encryption key from a dump of the workstation RAM...

2.4CVSS5.8AI score0.0018EPSS
Exploits0References1
CVE
CVE
added 2023/11/28 8:34 p.m.60 views

CVE-2023-29063

BD FACSChorus CVE-2023-29063 describes a vulnerability where physical access to PCIe slots could allow a memory-capture PCI card to dump RAM and expose sensitive data (e.g., BitLocker keys) during startup. Affected products include BD FACSChorus workstations (v5.0/v5.1 and v3.0/v3.1). The issue s...

2.4CVSS3.7AI score0.0018EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/11/28 8:34 p.m.33 views

CVE-2023-29063 Lack of DMA Access Protections

The FACSChorus workstation does not prevent physical access to its PCI express PCIe slots, which could allow a threat actor to insert a PCI card designed for memory capture. A threat actor can then isolate sensitive information such as a BitLocker encryption key from a dump of the workstation RAM...

2.4CVSS3.7AI score0.0018EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/11/28 12:0 a.m.9 views

PT-2023-22120 · Unknown · Facschorus Workstation

Name of the Vulnerable Software and Affected Versions: FACSChorus workstation affected versions not specified Description: The issue concerns the lack of physical access prevention to the PCI express PCIe slots in the workstation. This could allow a threat actor to insert a PCI card designed for...

2.4CVSS3.3AI score0.0018EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2023/11/28 12:0 a.m.25 views

Ubuntu: Security Advisory (USN-6516-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.1AI score0.00978EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/11/22 12:0 a.m.26 views

Ubuntu: Security Advisory (USN-6502-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.2AI score0.00978EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2023/11/21 3:14 p.m.427 views

USN-6496-1: Linux kernel vulnerabilities

Ivan D Barrera, Christopher Bednarz, Mustafa Ismail, and Shiraz Saleem discovered that the InfiniBand RDMA driver in the Linux kernel did not properly check for zero-length STAG or MR registration. A remote attacker could possibly use this to execute arbitrary code. CVE-2023-25775 Yu Hao discover...

9.8CVSS7.2AI score0.00978EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2023/11/14 3:46 p.m.6 views

kernel: Linux kernel: Integer overflow in iwlwifi debugfs function

A flaw was identified in the Linux kernel’s iwlwifi PCIe driver. In the function iwlwritetouserbuf—which is invoked by iwldbgfsmonitordataread—an attacker could supply a specially crafted count value e.g., SIZEMAX. This leads to an integer overflow when calculating the remaining buffer space,...

7.8CVSS7.2AI score0.00158EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/11/07 9:3 a.m.7 views

kernel: drivers/perf: hisi: Don't migrate perf to the CPU going to teardown

A logic error was found in the Linux kernel's HiSilicon PCIe performance monitoring driver in the CPU offline handling path. A local user can trigger this issue during CPU hotplug operations when the driver migrates performance monitoring context, potentially selecting the CPU being torn down as...

5.5CVSS7.3AI score0.00145EPSS
Exploits0References5
CNVD
CNVD
added 2023/10/11 12:0 a.m.41 views

Siemens SIMATIC CP Device Uncontrolled Resource Consumption Vulnerability

The SIMATIC CP 1623, CP 1626 and CP 1628 are PCI express cards for connection to industrial Ethernet. the SIMATIC CP 1604 and CP 1616 are PCI/PCI-104 cards for the connection of field devices to PROFINET industrial Ethernet. The Siemens SIMATIC CP devices are vulnerable to an uncontrolled resourc...

4.4CVSS6.7AI score0.00163EPSS
Exploits0References1
OSV
OSV
added 2023/05/15 10:15 p.m.8 views

AZL-26736 CVE-2023-2700 affecting package libvirt for versions less than 7.10.0-5

A vulnerability was found in libvirt. This security flaw ouccers due to repeatedly querying an SR-IOV PCI device's capabilities that exposes a memory leak caused by a failure to free the virPCIVirtualFunction array within the parent struct's gautoptr cleanup...

5.5CVSS6.7AI score0.00298EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 5:51 a.m.2 views

SUSE CVE-2011-3131

Xen 4.1.1 and earlier allows local guest OS kernels with control of a PCIE device to cause a denial of service CPU consumption and host hang via many crafted DMA requests that are denied by the IOMMU, which triggers a livelock...

4.6CVSS6.3AI score0.0044EPSS
Exploits1References4
Rows per page
Query Builder