CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4452 matches found

RedHat Linux•added 2022/05/10 1:58 p.m.•1 views

kernel: ppc: kvm: allows a malicious KVM guest to crash the host

A denial of service problem was found in the Linux kernel's Kernel-based Virtual Machine KVM specific to PowerPC. In this flaw, a user with local access can confuse the host offline code, causing the guest to crash...

5.5CVSS6.6AI score0.00345EPSS

Exploits0References5

RedHat Linux•added 2022/05/10 1:43 p.m.•8 views

kernel: KVM: SVM: out-of-bounds read/write in sev_es_string_io

A flaw was found in the KVM's AMD code for supporting the Secure Encrypted Virtualization-Encrypted State SEV-ES. A KVM guest using SEV-ES can trigger out-of-bounds reads and writes in the host kernel via a malicious VMGEXIT for a string I/O instruction for example, outs or ins using the exit...

8.8CVSS6.7AI score0.00419EPSS

Exploits1References5

RedHat Linux•added 2022/05/10 1:43 p.m.•2 views

hw: cpu: intel: Branch History Injection (BHI)

A flaw was found in hw. The Branch History Injection BHI describes a specific form of intra-mode BTI. This flaw allows an unprivileged attacker to manipulate the branch history before transitioning to supervisor or VMX root mode. This issue is an effort to cause an indirect branch predictor to...

6.5CVSS6.8AI score0.00508EPSS

Exploits0References7

Malwarebytes•added 2022/05/10 12:4 p.m.•25 views

“Chemical attack” email warnings deliver Jester Stealer malware

Jester Stealer, a malicious file capable of large amounts of data theft, is on the prowl again. The Ukrainian Computer Emergency Response Team CERT-UA has warned of a large distribution campaign abusing a "chemical attack" theme. Receiving an email like this in the invasion-affected regions of...

6.8AI score

Exploits0

Packet Storm•added 2022/05/09 12:0 a.m.•222 views

Ransom.Cryakl Code Execution

Discovery / credits: Malvuln John Page aka hyp3rlinx c 2022 Original source: https://malvuln.com/advisory/2aea3b217e6a3d08ef684594192cafc8.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Ransom.Cryakl Vulnerability: Code Execution Description: Cryakl looks for and loads a DLL...

7.4AI score

Exploits0

ATTACKERKB•added 2022/05/04 11:0 p.m.•4 views

CVE-2022-20780

Multiple vulnerabilities in Cisco Enterprise NFV Infrastructure Software NFVIS could allow an attacker to escape from the guest virtual machine VM to the host machine, inject commands that execute at the root level, or leak system data from the host to the VM. For more information about these...

9.9CVSS7.4AI score0.10922EPSS

Exploits1References3

ATTACKERKB•added 2022/05/04 11:0 p.m.•3 views

CVE-2022-20777

9.9CVSS7.5AI score0.1076EPSS

Exploits1References3

OSV•added 2022/05/04 5:15 p.m.•4 views

CVE-2022-20779

8.8CVSS7.6AI score0.10173EPSS

Exploits1References2

OSV•added 2022/05/04 5:15 p.m.•6 views

CVE-2022-20777

9.9CVSS5.9AI score0.1076EPSS

Exploits1References2

NVD•added 2022/05/04 5:15 p.m.•22 views

CVE-2022-20780

9.9CVSS0.10922EPSS

Exploits1References2

NVD•added 2022/05/04 5:15 p.m.•16 views

CVE-2022-20779

9.9CVSS0.10173EPSS

Exploits1References2

OSV•added 2022/05/04 5:15 p.m.•7 views

CVE-2022-20780

7.4CVSS5.9AI score0.10922EPSS

Exploits1References2

Prion•added 2022/05/04 5:15 p.m.•12 views

Information disclosure

9.3CVSS8.8AI score0.10173EPSS

Exploits1References2Affected Software1

Vulnrichment•added 2022/05/04 5:5 p.m.•14 views

CVE-2022-20780 Cisco Enterprise NFV Infrastructure Software Vulnerabilities

9.9CVSS7.2AI score0.10922EPSS

Exploits1References2

Cvelist•added 2022/05/04 5:5 p.m.•20 views

CVE-2022-20779 Cisco Enterprise NFV Infrastructure Software Vulnerabilities

9.9CVSS9.8AI score0.10173EPSS

Exploits1References2

CVE•added 2022/05/04 5:5 p.m.•167 views

CVE-2022-20779

Cisco NFVIS (Cisco Enterprise NFV Infrastructure Software) has CVE-2022-20779 and related vulnerabilities allowing an attacker to escape a guest VM to the host, inject root-level commands during image registration, or leak host data to VMs. Affected component is the NFVIS image/registration pathw...

9.9CVSS9AI score0.10173EPSS

Exploits1References2Affected Software1

Vulnrichment•added 2022/05/04 5:5 p.m.•6 views

CVE-2022-20777 Cisco Enterprise NFV Infrastructure Software Vulnerabilities

9.9CVSS7.1AI score0.1076EPSS

Exploits1References2

CNNVD•added 2022/05/04 12:0 a.m.•2 views

Cisco Enterprise NFV Infrastructure Software 代码问题漏洞

Cisco Enterprise NFV Infrastructure Software is a set of NVF infrastructure software platform from Cisco USA. The platform enables full lifecycle management of virtualization services through a central orchestrator and controller.Cisco Enterprise NFV Infrastructure Software is vulnerable to an XM...

9.9CVSS7.7AI score0.10922EPSS

Exploits1References4

Packet Storm•added 2022/05/04 12:0 a.m.•306 views

Ransom.WannaCry Code Execution

Discovery / credits: Malvuln - John Page aka hyp3rlinx c 2022 Original source: https://malvuln.com/advisory/84c82835a5d21bbcf75a61706d8ab549.txt Contact: [email protected] Media: twitter.com/malvuln ISR: ApparitionSec Threat: Ransom.WannaCry Vulnerability: Code Execution Description: WannaCry...

7.4AI score

Exploits0

Packet Storm•added 2022/05/03 12:0 a.m.•267 views

RedLine.Stealer Code Execution

Discovery / credits: Malvuln - malvuln.com c 2022 Original source: https://malvuln.com/advisory/0adb0e2ac8aa969fb088ee95c4a91536.txt Contact: [email protected] Media: twitter.com/malvuln Threat: RedLine.Stealer Vulnerability: Code Execution Description: RedLine looks for and loads a DLL named...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by