CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

7.3CVSS5.3AI score0.00015EPSS

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Handling the case where EIOINTC’s coremap is empty EIOINTC’s coremap in eiointcupdateswcoremap can be empty. Currently, we get a cpuid value of -1 in this case, but we actually need a value of 0, as it is similar ...

AstraLinux•added 2026/05/20 5:53 a.m.•1 views

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: KVM: x86/mmu: making the apf token non-zero to fix the bug In the current async pagefault logic, when a page is ready, KVM relies on kvmarchcandequeuepagepresent to determine whether to deliver a READY event to the Guest. This...

7.8CVSS6.1AI score0.00029EPSS

7.1CVSS6.7AI score0.0002EPSS

Astra Linux - уязвимость в openvswitch

A flaw was discovered in Open vSwitch, allowing ICMPv6 Neighbor Advertisement packets between virtual machines to bypass OpenFlow rules. This issue may enable a local attacker to create specially crafted packets with a modified or spoofed target IP address field, which can redirect ICMPv6 traffic...

5.5CVSS5.8AI score0.00008EPSS

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: KVM: x86/mmu: Only warnings are issued when overwriting a shadow-present SPTE, specifically when the operation is performed on direct MMUs. This adjustment applies only to MMUs that do not have shadowed gPTEs. While it’s impossib...

4.7CVSS6AI score0.00183EPSS

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: KVM: Initialize the gfntopfncache locks in the dedicated helper. Move the initialization of the gfntopfncache lock to another helper, and call the new helper during VM/vCPU creation. There may be race conditions due to the...

CNNVD•added 2026/05/20 12:0 a.m.•6 views

PhoenixStorybook 安全漏洞

PhoenixStorybook is an open-source component display and interaction debugging UI tool developed by Phenix Digital. Versions of PhoenixStorybook from 0.2.0 to 1.1.0 contained security vulnerabilities. These vulnerabilities stemmed from the unauthorized conversion of user-provided string parameter...

8.2CVSS5.8AI score0.00056EPSS

ATTACKERKB•added 2026/05/19 12:49 p.m.•6 views

CVE-2026-23558

The adjustments made for XSA-379 as well as those subsequently becoming XSA-387 still left a race window, when a HVM or PVH guest does a grant table version change from v2 to v1 in parallel with mapping the status pages via XENMEMaddtophysmap. Some of the status pages may then be freed while...

7.8CVSS5.8AI score0.00012EPSS

Cvelist•added 2026/05/19 12:49 p.m.•32 views

CVE-2026-23558 grant table v2 race in status page mapping

0.00012EPSS

CNNVD•added 2026/05/19 12:0 a.m.•5 views

Xen 安全漏洞

Xen is an open-source virtual machine monitor product developed by Xen. This product allows different and incompatible operating systems to run on the same computer. It also supports migration during operation, ensuring smooth functioning and avoiding downtime. Xen has a security vulnerability th...

6.5CVSS5.8AI score0.00013EPSS

Tenable Nessus•added 2026/05/19 12:0 a.m.•6 views

RHEL 9 : qemu-kvm (RHSA-2026:18772)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:18772 advisory. Kernel-based Virtual Machine KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the...

7.5CVSS7.1AI score0.00162EPSS

Exploits0References14

OSV•added 2026/05/19 12:0 a.m.•10 views

ALSA-2026:18772 Moderate: qemu-kvm security update

Kernel-based Virtual Machine KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM. Security Fixes: qemu-kvm: VNC WebSocket handshake use-after-free CVE-2025-11234 For more...

7.5CVSS7.1AI score0.00162EPSS

Exploits0References4

OSV•added 2026/05/18 9:43 a.m.•7 views

CLSA-2026-1779097389 qemu-kvm: Fix of CVE-2023-6693

fix CVE-2023-6693: virtio-net stack overflow via large guesthdrlen...

5.3CVSS6.8AI score0.00025EPSS

RedhatCVE•added 2026/05/16 7:56 a.m.•7 views

CVE-2024-36323

Improper isolation of VCN-JPEG HW register space could allow a malicious Guest Virtual Machine VM or a process to perform unauthorized access to the register space of the JPEG cores assigned a victim VM/process, potentially gaining arbitrary read/write access to the victim VM/process data...

8.8CVSS5.9AI score0.00012EPSS

Snyk•added 2026/05/16 12:0 a.m.•4 views

Improper Isolation or Compartmentalization

Overview boxlite is a Python bindings for Boxlite runtime Affected versions of this package are vulnerable to Improper Isolation or Compartmentalization in the mounting of host directories in read-only mode into VM. An attacker can gain unauthorized write access to the host filesystem by remounti...

10CVSS5.8AI score

NVD•added 2026/05/15 5:16 a.m.•6 views

CVE-2024-36323

8.8CVSS0.00012EPSS

NVD•added 2026/05/15 3:16 a.m.•7 views

CVE-2026-0427

Improper cleanup of shared register resources in GPU firmware could allow an admin-privileged attacker from a Guest Virtual machine VM to access these shared resources from another Guest VM, potentially resulting in the loss of confidentiality, integrity, or availability...

4.6CVSS0.00017EPSS

NVD•added 2026/05/15 3:16 a.m.•6 views

CVE-2024-36332

Improper isolation of GPU HW register space could allow a privileged attacker in malicious Guest Virtual Machine VM to perform unauthorized access to specific victim range of GPU MMIO register space, potentially causing the host OS to reboot and creating a Denial of Service DOS condition...

6.8CVSS0.00019EPSS