PT-2025-17248 · Imagination Technologies +1 · Graphics Ddk +1

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: Kernel software installed and running inside a Guest VM may exploit memory shared with the GPU Firmware to write data outside the Guest's virtualised GPU memory. Recommendations: At the...

dpdk: Denial Of Service from malicious guest on hypervisors using DPDK Vhost library

An out-of-bounds read vulnerability was found in DPDK's Vhost library checksum offload feature. This issue enables an untrusted or compromised guest to crash the hypervisor's vSwitch by forging Virtio descriptors to cause out-of-bounds reads. This flaw allows an attacker with a malicious VM using...

AZL-69640 CVE-2025-23135 affecting package kernel 6.6.126.1-1

In the Linux kernel, the following vulnerability has been resolved: RISC-V: KVM: Teardown riscv specific bits after kvmexit During a module removal, kvmexit invokes arch specific disable call which disables AIA. However, we invoke aiaexit before kvmexit resulting in the following warning. KVM...

OpDiffer: LLM-Assisted Opcode-Level Differential Testing of Ethereum Virtual Machine

As Ethereum continues to thrive, the Ethereum Virtual Machine EVM has become the cornerstone powering tens of millions of active smart contracts. Intuitively, security issues in EVMs could lead to inconsistent behaviors among smart contracts or even denial-of-service of the entire blockchain...

The vulnerability of the virtual server “1C-Bitrix: Virtual Machine” involves deficiencies in access control, allowing attackers to elevate their privileges to the root level.

The vulnerability of the virtual server “1C-Bitrix: Virtual Machine” is related to deficiencies in access control. Exploiting this vulnerability can allow a malicious actor to elevate their privileges to the root level...

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: macsec: fix UAF bug for realdev CVE-2022-49390 In the Linux kernel, the following vulnerability has been resolved: Squashfs: check the inode number is not the invalid value of zero CVE-2024-26982 In the Linux...

CVE-2025-30736

Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 19.3-19.26, 21.3-21.17 and 23.4-23.7. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java VM. Successful attacks ...

CVE-2025-30736

Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 19.3-19.26, 21.3-21.17 and 23.4-23.7. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java VM. Successful attacks ...

Oracle Database Server 安全漏洞

Oracle Database Server is a relational database management system from Oracle Corporation USA. This database management system provides data management, distributed processing, and other functions. A security vulnerability exists in Oracle Database Server's Java VM versions 19.3 to 19.26, 21.3 to...

RHEL 6 : openstack-nova (RHSA-2014:0366)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2014:0366 advisory. OpenStack Compute nova launches and schedules large networks of virtual machines, creating a redundant and scalable cloud computing platform...

RHEL 6 / 7 : thermostat1 (RHSA-2015:1052)

The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2015:1052 advisory. Thermostat is a monitoring and instrumentation tool for the OpenJDK HotSpot Java Virtual Machine JVM with support for monitoring multiple JVM...

PT-2025-22218

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to the fixed version Description A vulnerability in the Linux kernel has been resolved, related to KVM Kernel-based Virtual Machine and SVM Secure Virtual Machine. The issue occurs when a triple fault happens in...

The vulnerability of the virtual server “1C-Bitrix: Virtual Machine” involves deficiencies in access control, allowing attackers to elevate their privileges to the root level.

The vulnerability of the virtual server “1C-Bitrix: Virtual Machine” is related to deficiencies in access control. Exploiting this vulnerability can allow a malicious actor to elevate their privileges to the root level...

Palo Alto Networks Cortex XDR Broker VM 操作系统命令注入漏洞

Palo Alto Networks Cortex XDR Broker VM is a secure virtual machine from Palo Alto Networks, Inc. that integrates with Cortex XDR to bridge the network and Cortex XDR. A security vulnerability exists in the Palo Alto Networks Cortex XDR Broker VM, which stems from command injection and could lead...

The vulnerability of programs for managing and monitoring IT services such as Microsoft System Center Operations Manager, System Center Service Manager, System Center Orchestrator, System Center Data Protection Manager, and System Center Virtual Machine Manager lies in the use of an insecure search path, which allows an attacker to escalate their privileges.

The vulnerabilities of programs for managing and monitoring IT services such as Microsoft System Center Operations Manager, System Center Service Manager, System Center Orchestrator, System Center Data Protection Manager, and System Center Virtual Machine Manager are related to the use of an...

CVE-2025-21431

Information disclosure may be there when a guest VM is connected...

DEBIAN-CVE-2025-22013

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Unconditionally save+flush host FPSIMD/SVE/SME state There are several problems with the way hyp code lazily saves the host's FPSIMD/SVE state, including: Host SVE being discarded unexpectedly due to inconsistent...

Microsoft System Center Operations Manager 代码问题漏洞

Microsoft System Center Operations Manager is a large-scale monitoring and management software for corporate environments from Microsoft USA. Formerly known as MOM Microsoft Operations Manager, the software is primarily used to monitor IT systems and provide monitoring support for distributed...

SUSE-SU-2025:1162-1 Security update for xen

This update for xen fixes the following issues: - CVE-2025-1713: Fixed potential deadlock with VT-d and legacy PCI device pass-through bsc1238043 Other fixes: - Xen channels and domU console bsc1219354 - Fixed attempting to start guest vm's libxl fills disk with errors bsc1237692 - Xen call trace...

CVE-2025-21431 Time-of-check Time-of-use (TOCTOU) Race Condition in Automotive OS Platform

Information disclosure may be there when a guest VM is connected...