CVE-2025-22247

A vulnerability was found in open-vm-tools. A malicious actor with non-administrative privileges on a guest virtual machine VM may tamper with the local files to trigger insecure file operations within that VM. Mitigation Currently, no mitigation is available for this vulnerability...

CVE-2025-22247 Insecure file handling vulnerability

VMware Tools contains an insecure file handling vulnerability. A malicious actor with non-administrative privileges on a guest VM may tamper the local files to trigger insecure file operations within that VM...

SUSE CVE-2022-49882

In the Linux kernel, the following vulnerability has been resolved: KVM: Reject attempts to consume or refresh inactive gfntopfncache Reject kvmgpccheck and kvmgpcrefresh if the cache is inactive. Not checking the active flag during refresh is particularly egregious, as KVM can end up with a vali...

OtterCookie v4 Adds VM Detection and Chrome, MetaMask Credential Theft Capabilities

The North Korean threat actors behind the Contagious Interview campaign have been observed using updated versions of a cross-platform malware called OtterCookie with capabilities to steal credentials from web browsers and other files. NTT Security Holdings, which detailed the new findings, said t...

UBUNTU-CVE-2025-37885

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Reset IRTE to host control if new route isn't postable Restore an IRTE back to host control remapped or posted MSI mode if the new GSI route prevents posting the IRQ directly to a vCPU, regardless of the GSI routing typ...

The vulnerability of the KVM kernel component in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the KVM kernel component in the Linux operating system is related to pointer arithmetic errors. Exploiting this vulnerability can allow a remote attacker to cause a service failure...

CVE-2024-49842

Memory corruption during memory mapping into protected VM address space due to incorrect API restrictions...

Eclipse Jetty 安全漏洞

Eclipse Jetty is an open source, Java-based web server and Java Servlet container from the Eclipse Foundation. A security vulnerability exists in Eclipse Jetty versions 12.0.0 through 12.0.16, which originates from an HTTP/2 server that does not validate the SETTINGSMAXHEADERLISTSIZE setting, whi...

RLSA-2024:6964 Moderate: virt:rhel and virt-devel:rhel security update

Kernel-based Virtual Machine KVM offers a full virtualization solution forLinux on numerous hardware platforms. The virt:rhel module contains packageswhich provide user-space components used to run virtual machines using KVM.The packages also provide APIs for managing and interacting with the...

PT-2025-25786

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been resolved. The issue occurred when a process exited and attempted to unmap CSA and free GPU VM. If a signal was accepted and the wait to take...

CVE-2025-21460

Memory corruption while processing a message, when the buffer is controlled by a Guest VM, the value can be changed continuously...

CVE-2024-49841

Memory corruption during memory assignment to headless peripheral VM due to incorrect error code handling...

CVE-2024-49841

Memory corruption during memory assignment to headless peripheral VM due to incorrect error code handling...

CVE-2024-49842

Memory corruption during memory mapping into protected VM address space due to incorrect API restrictions...

CVE-2025-21460

CVE-2025-21460 describes memory corruption in a Qualcomm chipset-based automotive software platform built on QNX. The vulnerability occurs while processing a message where a buffer is controlled by a Guest VM, allowing the value to be changed continuously and potentially triggering corruption. CV...

CVE-2024-49842

Technical details about CVE-2024-49842 are not publicly provided in the connected documents. Monitor for updates.

CVE-2024-49842 Improper Access Control in Hypervisor

Memory corruption during memory mapping into protected VM address space due to incorrect API restrictions...

CVE-2025-2509

Out-of-Bounds Read in Virglrenderer in ChromeOS 16093.57.0 allows a malicious guest VM to achieve arbitrary address access within the crosvm sandboxed process, potentially leading to VM escape via crafted vertex elements data triggering an out-of-bounds read in utilformatdescription...

Google ChromeOS 安全漏洞

Google ChromeOS is an operating system from the American company Google. Google ChromeOS suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to cause a virtual machine to escape...

Qualcomm Chipsets 访问控制错误漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. An access control error vulnerability exists in Qualcomm Chipsets that stems from improper API restrictions when mapping memory into the address space of a protected virtual machine, which could lead to memory corruption...