4438 matches found
CVE-2025-52983
A UI Discrepancy for Security Feature vulnerability in the UI of Juniper Networks Junos OS on VM Host systems allows a network-based, unauthenticated attacker to access the device. On VM Host Routing Engines RE, even if the configured public key for root has been removed, remote users which are i...
KVM: x86: Load DR6 with guest value only before entering .vcpu_run() loop
...
KVM: x86: Reset IRTE to host control if *new* route isn't postable
...
KVM: x86: Acquire SRCU in KVM_GET_MP_STATE to protect guest memory accesses
...
KVM: arm64: Tear down vGIC on failed vCPU creation
...
KVM: SVM: Forcibly leave SMM mode on SHUTDOWN interception
...
SUSE CVE-2025-38309
In the Linux kernel, the following vulnerability has been resolved: drm/xe/vm: move xesvminit earlier In xevmcloseandput we need to be able to call xesvmfini, however during vm creation we can call this on the error path, before having actually initialised the svm state, leading to various splats...
CVE-2025-21445
Memory corruption while copying the result to the transmission queue which is shared between the virtual machine and the host...
CVE-2025-38309 drm/xe/vm: move xe_svm_init() earlier
In the Linux kernel, the following vulnerability has been resolved: drm/xe/vm: move xesvminit earlier In xevmcloseandput we need to be able to call xesvmfini, however during vm creation we can call this on the error path, before having actually initialised the svm state, leading to various splats...
Dell PowerFlex Manager VM 日志信息泄露漏洞
Dell PowerFlex Manager VM is a virtual machine software from Dell for managing and monitoring storage systems. A log information disclosure vulnerability exists in Dell PowerFlex Manager VM versions prior to 4.6.2.1. An attacker could exploit this vulnerability to obtain user credentials and then...
The vulnerability of the software platform for managing execution environments of Apache CloudStack, related to information disclosure, allows a hacker to gain unauthorized access to protected information.
The vulnerability of the software platform that manages virtual machine environments in Apache CloudStack is related to information disclosure. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to protected information...
YushuTechUnitreeGo1
Based on the provided code, it appears to be a Windows executable file PE file that has been modified to contain a malicious payload. The file is likely a malware dropper or a backdoor that allows remote access to the compromised system. The code is written in C and uses various techniques to eva...
CVE-2025-21445
Memory corruption while copying the result to the transmission queue which is shared between the virtual machine and the host...
CVE-2025-21445
CVE-2025-21445 describes memory corruption when copying results into the transmission queue shared between a virtual machine and the host. The CVE is associated with Qualcomm chipsets, with a CVSSv3.1 base score of 7.8 (HIGH impact): attack vector Local, prerequisites Low, user interaction None, ...
CVE-2025-21445 Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Data HLOS - QX
Memory corruption while copying the result to the transmission queue which is shared between the virtual machine and the host...
Qualcomm Chipsets 安全漏洞
Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that stems from a memory corruption when copying results in a transfer queue shared between a virtual machine and a host...
PT-2025-28436 · Qualcomm · Snapdragon +23
Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: Memory corruption occurs while copying the result to the transmission queue, which is shared between the virtual machine and the host. Recommendations: At the moment, there is no information...
The vulnerability of the Java VM component of the Oracle Database Server management system allows a hacker to gain access to read, modify, or delete data.
The vulnerability of the Java VM component of the Oracle Database Server management system is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to gain read, modify, or delete access to data remotely...
The vulnerability of the Vagrant framework for creating and managing development environments lies in its ability to allow a hacker to download and edit the Vagrantfile file on the host virtual machine. This enables the hacker to read and modify data, as well as execute arbitrary code.
The vulnerability of the Vagrant framework for creating and managing development environments lies in the ability to load and edit the Vagrantfile file on the host virtual machine, due to the use of a default synchronized folder configuration. Exploiting this vulnerability can allow an attacker t...
The vulnerability of the container management system and the virtual machine manager Incus, related to unlimited resource distribution, allows attackers to bypass security restrictions and cause service failures.
The vulnerability of the container management system and the virtual machine manager Incus is related to the unlimited distribution of resources due to incorrect generation of access control rules for local services based on an access control list. Exploiting this vulnerability can allow a...