Lucene search
+L

53 matches found

Cvelist
Cvelist
added 2025/09/11 4:49 p.m.18 views

CVE-2025-40300 x86/vmscape: Add conditional IBPB mitigation

In the Linux kernel, the following vulnerability has been resolved: x86/vmscape: Add conditional IBPB mitigation VMSCAPE is a vulnerability that exploits insufficient branch predictor isolation between a guest and a userspace hypervisor like QEMU. Existing mitigations already protect kernel/KVM...

0.00331EPSS
Exploits0References13
Github Security Blog
Github Security Blog
added 2025/07/02 9:32 p.m.18 views

HashiCorp Vagrant has code injection vulnerability through default synced folders

An authenticated virtual machine escape vulnerability exists in HashiCorp Vagrant versions 2.4.6 and below when using the default synced folder configuration. By design, Vagrant automatically mounts the host system’s project directory into the guest VM under /vagrant or C:\vagrant on Windows. Thi...

7.3AI score
Exploits0References10Affected Software1
CVE
CVE
added 2025/07/02 7:26 p.m.32 views

CVE-2025-34075

CVE-2025-34075 entry is labeled rejected/withdrawn by the CNA. Connected docs describe a guest-to-host code-execution vector in HashiCorp Vagrant via the default synced-folder Vagrantfile exposure: Vagrant mounts the host project directory (including Vagrantfile) into the guest, and an attacker w...

7.2AI score
Exploits0
Cvelist
Cvelist
added 2025/07/02 7:26 p.m.15 views

CVE-2025-34075

...

Exploits0
RubySec
RubySec
added 2025/07/02 12:0 a.m.11 views

HashiCorp Vagrant has code injection vulnerability through default synced folders

An authenticated virtual machine escape vulnerability exists in HashiCorp Vagrant versions 2.4.6 and below when using the default synced folder configuration. By design, Vagrant automatically mounts the host system’s project directory into the guest VM under /vagrant or C:\vagrant on Windows. Thi...

6.5AI score
Exploits0References1Affected Software1
CNVD
CNVD
added 2025/05/14 12:0 a.m.7 views

Google ChromeOS Out-of-Bounds Read Vulnerability

Google ChromeOS is an operating system from the American company Google. Google ChromeOS suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to cause a virtual machine to escape...

7.8CVSS7.3AI score0.00112EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/05/06 12:0 a.m.7 views

Google ChromeOS 安全漏洞

Google ChromeOS is an operating system from the American company Google. Google ChromeOS suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to cause a virtual machine to escape...

7.8CVSS6.7AI score0.00112EPSS
Exploits1References2
CNVD
CNVD
added 2024/11/05 12:0 a.m.6 views

QEMU Resource Management Error Vulnerability (CNVD-2024-44506)

QEMU Quick Emulator is a set of simulation processor software. The software is fast and cross-platform. QEMU suffers from a security vulnerability that stems from the presence of a post-release reuse vulnerability that can lead to a crash or virtual machine escape. An attacker could exploit this...

8.2CVSS6.1AI score0.0025EPSS
Exploits0References1
OSV
OSV
added 2024/10/21 3:15 p.m.4 views

DEBIAN-CVE-2024-6519

A use-after-free vulnerability was found in the QEMU LSI53C895A SCSI Host Bus Adapter emulation. This issue can lead to a crash or VM escape...

8.2CVSS7.7AI score0.0025EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2024/10/15 3:8 a.m.7 views

SUSE CVE-2024-6519

A use-after-free vulnerability was found in the QEMU LSI53C895A SCSI Host Bus Adapter emulation. This issue can lead to a crash or VM escape...

8.2CVSS6.8AI score0.0025EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 6:9 a.m.7 views

SUSE CVE-2008-0928

Qemu 0.9.1 and earlier does not perform range checks for block device read or write requests, which allows guest host users with root privileges to access arbitrary memory and escape the virtual machine...

4.7CVSS7AI score0.00369EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2022/05/04 11:0 p.m.8 views

CVE-2022-20780

Multiple vulnerabilities in Cisco Enterprise NFV Infrastructure Software NFVIS could allow an attacker to escape from the guest virtual machine VM to the host machine, inject commands that execute at the root level, or leak system data from the host to the VM. For more information about these...

9.9CVSS7.4AI score0.10922EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2022/05/04 11:0 p.m.6 views

CVE-2022-20777

Multiple vulnerabilities in Cisco Enterprise NFV Infrastructure Software NFVIS could allow an attacker to escape from the guest virtual machine VM to the host machine, inject commands that execute at the root level, or leak system data from the host to the VM. For more information about these...

9.9CVSS7.5AI score0.1076EPSS
Exploits1References3
OSV
OSV
added 2022/05/04 5:15 p.m.6 views

CVE-2022-20779

Multiple vulnerabilities in Cisco Enterprise NFV Infrastructure Software NFVIS could allow an attacker to escape from the guest virtual machine VM to the host machine, inject commands that execute at the root level, or leak system data from the host to the VM. For more information about these...

8.8CVSS7.6AI score0.10173EPSS
Exploits1References2
OSV
OSV
added 2022/05/04 5:15 p.m.12 views

CVE-2022-20780

Multiple vulnerabilities in Cisco Enterprise NFV Infrastructure Software NFVIS could allow an attacker to escape from the guest virtual machine VM to the host machine, inject commands that execute at the root level, or leak system data from the host to the VM. For more information about these...

7.4CVSS5.9AI score0.10922EPSS
Exploits1References2
OSV
OSV
added 2022/05/04 5:15 p.m.10 views

CVE-2022-20777

Multiple vulnerabilities in Cisco Enterprise NFV Infrastructure Software NFVIS could allow an attacker to escape from the guest virtual machine VM to the host machine, inject commands that execute at the root level, or leak system data from the host to the VM. For more information about these...

9.9CVSS5.9AI score0.1076EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2021/01/19 12:0 a.m.10 views

PT-2025-27667 · Hashicorp · Hashicorp Vagrant

Name of the Vulnerable Software and Affected Versions: HashiCorp Vagrant affected versions not specified Description: An authenticated virtual machine escape issue exists in HashiCorp Vagrant when using the default synced folder configuration. This configuration automatically mounts the host...

6.8CVSS7.5AI score
Exploits0References20
0day.today
0day.today
added 2019/11/25 12:0 a.m.188 views

VMware WorkStation 12.5.5 - Virtual Machine Escape Exploit

VMware Escape Exploit VMware Escape Exploit before VMware WorkStation 12.5.5 Host Target: Win10 x64 Compiler: VS2013 Test on VMware 12.5.2 build-4638234 Known issues Failing to heap manipulation causes host process crash. Not quite elaborate because I'm not good at doing heap "fengshui" on winows...

9.9CVSS0.6AI score0.1994EPSS
Exploits5
OSV
OSV
added 2019/03/14 8:29 p.m.5 views

CVE-2018-12223

Insufficient access control in User Mode Driver in IntelR Graphics Driver for Windows before versions 10.18.x.5059 aka 15.33.x.5059, 10.18.x.5057 aka 15.36.x.5057, 20.19.x.5063 aka 15.40.x.5063 21.20.x.5064 aka 15.45.x.5064 and 24.20.100.6373 potentially enables an unprivileged user to escape fro...

6.3CVSS5.8AI score0.00295EPSS
Exploits0References2
The Hacker News
The Hacker News
added 2019/01/08 12:0 p.m.161 views

Zerodium Offers to Buy Zero-Day Exploits at Higher Prices Than Ever

Well, there's some good news for hackers and vulnerability hunters, though terrible news for tech manufacturers! Exploit vendor Zerodium is now willing to offer significantly higher payouts for full, working zero-day exploits that allow stealing of data from WhatsApp, iMessage and other online ch...

Exploits0
Rows per page
Query Builder