Lucene search
K

5595 matches found

HPE Security Bulletins
HPE Security Bulletins
added 2026/04/09 12:0 a.m.3 views

HPESBHF05030 rev.1 - HPE Superdome Flex, Superdome Flex 280 and Compute Scale-up Server 3200 Platform Using Certain Intel Processor BIOS, INTEL-SA-01234, 2025.3 IPU, UEFI Reference Firmware Advisory, Multiple Vulnerabilities

Potential Security Impact: Local: Disclosure of Information, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Superdome Flex Server - Prior to v4.10.18 HPE Superdome Flex 280 Server - Prior to v2.05.12 HPE Compute Scale-up Server 3200 - Prior to v1.60.88...

8.7CVSS6.1AI score0.00127EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/03/26 2:57 p.m.5 views

CVE-2026-0940

A potential improper initialization vulnerability was reported in the BIOS of some ThinkPads that could allow a local privileged user to modify data and execute arbitrary code...

8.4CVSS6.1AI score0.0013EPSS
Exploits0References1
Hewlett-Packard
Hewlett-Packard
added 2026/03/24 12:0 a.m.9 views

Insyde BIOS SMM Memory Corruption Security Update

A potential security vulnerability has been identified in certain HP PC products using Insyde BIOS InsydeH20 UEFI Firmware, which might allow arbitrary code execution. Insyde has released mitigation for the potential vulnerability. HP has identified affected platforms and corresponding SoftPaqs...

8.2CVSS6AI score0.00129EPSS
Exploits0Affected Software20
Tenable Nessus
Tenable Nessus
added 2026/03/17 12:0 a.m.4 views

EulerOS Virtualization 2.12.1 : edk2 (EulerOS-SA-2026-1471)

According to the versions of the edk2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : EDK2 contains a vulnerability in BIOS where a user may cause an Integer Overflow or Wraparound by network means. A successful...

7CVSS6.4AI score0.0023EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2026/03/16 12:0 a.m.7 views

Huawei EulerOS: Security Advisory for edk2 (EulerOS-SA-2026-1471)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7CVSS5.8AI score0.0023EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2026/03/16 12:0 a.m.8 views

Huawei EulerOS: Security Advisory for edk2 (EulerOS-SA-2026-1528)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7CVSS5.8AI score0.0023EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/03/16 12:0 a.m.6 views

EulerOS Virtualization 2.12.0 : edk2 (EulerOS-SA-2026-1528)

According to the versions of the edk2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : EDK2 contains a vulnerability in BIOS where a user may cause an Integer Overflow or Wraparound by network means. A successful...

7CVSS6.4AI score0.0023EPSS
Exploits0References4
NVD
NVD
added 2026/03/11 9:16 p.m.3 views

CVE-2026-0940

A potential improper initialization vulnerability was reported in the BIOS of some ThinkPads that could allow a local privileged user to modify data and execute arbitrary code...

8.4CVSS0.0013EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/11 8:21 p.m.2 views

CVE-2026-0940

A potential improper initialization vulnerability was reported in the BIOS of some ThinkPads that could allow a local privileged user to modify data and execute arbitrary code...

8.4CVSS6AI score0.0013EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/11 8:21 p.m.3 views

CVE-2026-0940

A potential improper initialization vulnerability was reported in the BIOS of some ThinkPads that could allow a local privileged user to modify data and execute arbitrary code...

8.4CVSS6AI score0.0013EPSS
Exploits0References2
CVE
CVE
added 2026/03/11 8:21 p.m.20 views

CVE-2026-0940

CVE-2026-0940 concerns an improper initialization vulnerability in the BIOS of some ThinkPads. It could let a local privileged user modify data and execute arbitrary code. Affected software/hardware: ThinkPad BIOS firmware (on affected ThinkPad models). Root cause: improper initialization. Impact...

8.4CVSS6AI score0.0013EPSS
Exploits0References1
Lenovo
Lenovo
added 2026/03/10 1:41 p.m.9 views

Multi-Vendor BIOS Security Vulnerabilities (March 2026) - Lenovo Support US

No description provided...

5.8AI score
Exploits0
OSV
OSV
added 2026/03/09 10:1 a.m.9 views

CLSA-2026-1773050498 Fix CVE(s): CVE-2025-10230

SECURITY UPDATE: remote command execution via unsanitized WINS hook NetBIOS name handling in Samba AD DC - debian/patches/CVE-2025-10230.patch: validate NetBIOS names in source4 WINS hook to prevent shell metacharacter injection - debian/patches/CVE-2025-10230-test.patch: add torture tests for WI...

10CVSS7.6AI score0.40121EPSS
Exploits2References1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2026/03/02 2:46 a.m.9 views

Out-of-bounds write vulnerability in Fujitsu BIOS Driver (fbiosdrv.sys)

Overview Fujitsu BIOS Driver fbiosdrv.sys provided by Fujitsu Limited contains the following vulnerability. Out-of-bounds Write CWE-787 - CVE-2025-65001 Fujitsu Limited reported this vulnerability to JPCERT/CC to notify users of its solution through JVN. Impact Receiving a specially crafted reque...

8.2CVSS6.3AI score0.00145EPSS
Exploits0References5
Amd
Amd
added 2026/02/24 12:0 a.m.7 views

Guest Initiated Machine Check Errors

Summary AMD received a report from the security team at Amazon Web Services AWS indicating that it may be possible for guest VMs to cause a crash of a host system. By flooding the host system with a large number of malformed System Management Interrupts SMIs, it may be possible for a guest VM to...

8.3CVSS5.4AI score0.00247EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2026/02/24 12:0 a.m.3 views

HPESBHF05023 rev.1 - Certain HPE SimpliVity Servers Using Certain AMD EPYC Processors, AMD-SB-7059: Guest Initiated Machine Check Errors, Denial of Service Vulnerability

Potential Security Impact: Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 325 Gen11 - Prior to SimpliVity Support Pack SVTSP Gen11 v20260116 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2023-31364 |...

8.3CVSS6.1AI score0.00247EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2026/02/20 12:0 a.m.3 views

HPESBHF04864 rev.1 - Certain HPE SimpiVity Servers Using Certain Intel Processors, INTEL-SA-01244, 2025.2 IPU, Intel Processor Advisory, Local Denial of Service Vulnerability

Potential Security Impact: Local: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 380 Gen11 - Prior to SimpliVity Support Pack SVTSP Gen11 v20251001 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2025-20054 |...

6.8CVSS6.7AI score0.00142EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2026/02/19 12:0 a.m.3 views

HPESBHF04967 rev.1 - Certain HPE SimpliVity Servers Using Certain Intel Processor BIOS, INTEL-SA-01234, 2025.3 IPU, UEFI Reference Firmware Advisory., Multiple Vulnerabilities

Potential Security Impact: Local: Disclosure of Information, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 380 Gen10 - Prior to SimpliVity Support Pack SVTSP Gen10 2026-0116 - CVE-2025-20105, CVE-2025-20064 HPE SimpliVity 380 Gen10 G - Prio...

8.7CVSS6.1AI score0.00127EPSS
Exploits0
OSV
OSV
added 2026/02/14 3:16 p.m.19 views

UBUNTU-CVE-2026-23131

In the Linux kernel, the following vulnerability has been resolved: platform/x86: hp-bioscfg: Fix kobject warnings for empty attribute names The hp-bioscfg driver attempts to register kobjects with empty names when the HP BIOS returns attributes with empty name strings. This causes multiple kerne...

5.5CVSS5.7AI score0.00114EPSS
Exploits0References16
Cvelist
Cvelist
added 2026/02/14 3:9 p.m.28 views

CVE-2026-23131 platform/x86: hp-bioscfg: Fix kobject warnings for empty attribute names

In the Linux kernel, the following vulnerability has been resolved: platform/x86: hp-bioscfg: Fix kobject warnings for empty attribute names The hp-bioscfg driver attempts to register kobjects with empty names when the HP BIOS returns attributes with empty name strings. This causes multiple kerne...

0.00114EPSS
Exploits0References4
Rows per page
Query Builder