Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Tenable Nessus
Tenable Nessusadded 2024/09/21 12:0 a.m.7 views

FreeBSD : FreeBSD -- bhyve(8) out-of-bounds read access via XHCI emulation (1febd09b-7716-11ef-9a62-002590c1f29c)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 1febd09b-7716-11ef-9a62-002590c1f29c advisory. bhyve can be configured to emulate devices on a virtual USB controller XHCI, such as USB tablet devices...

8.1CVSS6.8AI score0.04355EPSS
Exploits0References2
Cvelist
Cvelistadded 2024/09/20 7:51 a.m.17 views

CVE-2024-41721 bhyve(8) out-of-bounds read access via XHCI emulation

An insufficient boundary validation in the USB code could lead to an out-of-bounds read on the heap, which could potentially lead to an arbitrary write and remote code execution...

0.04355EPSS
Exploits0References1
FreeBSD Advisory
FreeBSD Advisoryadded 2024/09/19 12:0 a.m.13 views

FreeBSD-SA-24:15.bhyve

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-24:15.bhyve Security Advisory The FreeBSD Project Topic: bhyve8 out-of-bounds read access via XHCI emulation Category: core Module: bhyve Announced: 2024-09-19...

8.1CVSS6.6AI score0.04355EPSS
Exploits0
Positive Technologies
Positive Technologiesadded 2024/09/19 12:0 a.m.1 views

PT-2024-6401 · Bhyve +1 · Bhyve +1

Name of the Vulnerable Software and Affected Versions: FreeBSD affected versions not specified Description: The issue is related to an insufficient boundary validation in the USB code, which could lead to an out-of-bounds read on the heap, potentially resulting in an arbitrary write and remote co...

10CVSS8.2AI score0.04355EPSS
Exploits0References45
SUSE CVE
SUSE CVEadded 2023/02/15 3:57 a.m.1 views

SUSE CVE-2020-14394

An infinite loop flaw was found in the USB xHCI controller emulation of QEMU while computing the length of the Transfer Request Block TRB Ring. This flaw allows a privileged guest user to hang the QEMU process on the host, resulting in a denial of service...

3.2CVSS6.5AI score0.00025EPSS
Exploits1References7
Positive Technologies
Positive Technologiesadded 2019/07/24 12:0 a.m.2 views

PT-2019-17773 · Freebsd · Bhyve +1

Name of the Vulnerable Software and Affected Versions: FreeBSD versions 11.2-RELEASE through 11.2-RELEASE-p11 FreeBSD versions 11.3-RELEASE through 11.3-RELEASE-p0 FreeBSD versions 12.0-RELEASE through 12.0-RELEASE-p7 FreeBSD versions 11.3-STABLE before r350247 FreeBSD versions 12.0-STABLE before...

9.6CVSS9.1AI score0.01778EPSS
Exploits0References6
OSV
OSVadded 2017/09/20 6:0 p.m.1 views

USN-3414-2 qemu regression

USN-3414-1 fixed vulnerabilities in QEMU. The patch backport for CVE-2017-9375 was incomplete and caused a regression in the USB xHCI controller emulation support. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Leo Gaspard discovered that QEMU...

5.8AI score
Exploits0References2
OPENSUSE Linux
OPENSUSE Linuxadded 2017/01/02 1:8 p.m.45 views

Security update for xen (important)

This updates xen to version 4.5.5 to fix the following issues: - An unprivileged user in a guest could gain guest could escalate privilege to that of the guest kernel, if it had could invoke the instruction emulator. Only 64-bit x86 HVM guest were affected. Linux guest have not been vulnerable...

4.9CVSS0.4AI score0.0015EPSS
Exploits0References23
Rows per page
Query Builder