4452 matches found
Microsoft Windows Multiple Vulnerabilities (KB5009610)
This host is missing a critical security update according to Microsoft KB5009610 SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2022-21833
Virtual Machine IDE Drive Elevation of Privilege Vulnerability...
CVE-2022-21833
Virtual Machine IDE Drive Elevation of Privilege Vulnerability...
CVE-2022-21833
Virtual Machine IDE Drive Elevation of Privilege Vulnerability...
Privilege escalation
Virtual Machine IDE Drive Elevation of Privilege Vulnerability...
CVE-2022-21833 Virtual Machine IDE Drive Elevation of Privilege Vulnerability
...
CVE-2022-21833
CVE-2022-21833 is a Local Elevation of Privilege in Virtual Machine IDE Drive. The NVD entry lists CVSS-3.1 base score 7.8 (LOCAL, LOW privileges required, no user interaction, privilege escalation with CHANGED scope; impacts: CONFIDENTIALITY/HIGH, INTEGRITY/HIGH, AVAILABILITY/HIGH). Publicly vis...
Virtual Machine IDE Drive Elevation of Privilege Vulnerability
...
Microsoft Windows Virtual Machine 权限许可和访问控制问题漏洞
Microsoft Windows Virtual Machine is a virtualization technology from Microsoft USA. It allows you to run many virtual environments in a Windows environment. A vulnerability exists in the Microsoft Windows Virtual Machine IDE Drive with privilege permission and access control issues. The followin...
VMware Patches Important Bug Affecting ESXi, Workstation and Fusion Products
VMWare has shipped updates to Workstation, Fusion, and ESXi products to address an "important" security vulnerability that could be weaponized by a threat actor to take control of affected systems. The issue relates to a heap-overflow vulnerability — tracked as CVE-2021-22045 CVSS score: 7.7 —...
VMware ESXi Buffer Overflow Vulnerability
Vmware VMware ESXi is a server virtualization platform from Vmware that can be installed directly on physical servers. A buffer overflow vulnerability exists in several Vmware products, which stems from a failure of the product's CD-ROM device emulation feature to properly determine memory...
CVE-2021-22045
VMware ESXi 7.0, 6.7 before ESXi670-202111101-SG and 6.5 before ESXi650-202110101-SG, VMware Workstation 16.2.0 and VMware Fusion 12.2.0 contains a heap-overflow vulnerability in CD-ROM device emulation. A malicious actor with access to a virtual machine with CD-ROM device emulation may be able t...
CVE-2021-22045
VMware ESXi 7.0, 6.7 before ESXi670-202111101-SG and 6.5 before ESXi650-202110101-SG, VMware Workstation 16.2.0 and VMware Fusion 12.2.0 contains a heap-overflow vulnerability in CD-ROM device emulation. A malicious actor with access to a virtual machine with CD-ROM device emulation may be able t...
CVE-2021-22045
VMware ESXi 7.0, 6.7 before ESXi670-202111101-SG and 6.5 before ESXi650-202110101-SG, VMware Workstation 16.2.0 and VMware Fusion 12.2.0 contains a heap-overflow vulnerability in CD-ROM device emulation. A malicious actor with access to a virtual machine with CD-ROM device emulation may be able t...
VMware ESXi缓冲区错误漏洞
Vmware VMware ESXi is a server virtualization platform from Vmware that can be installed directly on physical servers. A buffer overflow vulnerability exists in several Vmware products, which stems from a failure of the product's CD-ROM device emulation feature to properly determine memory...
PT-2025-8495
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been resolved. The issue is related to the KVM x86 component, where the update of guest PTE A/D bits was not properly handled. The VM PFNMAP path...
CVE-2021-28713
A denial of service flaw for virtual machine guests in the Linux kernel's Xen hypervisor subsystem was found in the way users call some interrupts with high frequency from one of the guests. A local user could use this flaw to starve the resources resulting in a denial of service. Mitigation...
CVE-2021-28712
A denial of service flaw for virtual machine guests in the Linux kernel's Xen hypervisor subsystem was found in the way users call some interrupts with high frequency from one of the guests. A local user could use this flaw to starve the resources resulting in a denial of service. Mitigation...
CVE-2021-28711
A denial of service flaw for virtual machine guests in the Linux kernel's Xen hypervisor subsystem was found in the way users call some interrupts with high frequency from one of the guests. A local user could use this flaw to starve the resources resulting in a denial of service. Mitigation...
DEBIAN-CVE-2021-4024
A flaw was found in podman. The podman machine function used to create and manage Podman virtual machine containing a Podman process spawns a gvproxy process on the host system. The gvproxy API is accessible on port 7777 on all IP addresses on the host. If that port is open on the host's firewall...