Lucene search
+L

51 matches found

Tenable Nessus
Tenable Nessus
added 2025/12/18 12:0 a.m.4 views

SUSE SLED15: xen / xen-devel / xen-libs / xen-tools / xen-tools-domU / etc (SUSE-SU-2025:4419-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:4419-1 advisory. Update to Xen 4.20.2 jscPED-8907. Security issues fixed: - CVE-2025-58149: incorrect removal of permissions on PCI devi...

7.5CVSS5.8AI score0.00396EPSS
Exploits0References5
SUSE Linux
SUSE Linux
added 2025/12/16 6:57 p.m.5 views

Security update for xen

This update for xen fixes the following issues: Update to Xen 4.20.2 jscPED-8907. Security issues fixed: CVE-2025-58149: incorrect removal of permissions on PCI device unplug allows PV guests to access memory of devices no longer assigned to it XSA-476, bsc1252692. Other issues fixed: Failure to...

6.5CVSS6.9AI score0.00396EPSS
Exploits0References8
Vulnrichment
Vulnrichment
added 2025/10/31 11:50 a.m.2 views

CVE-2025-58149 Incorrect removal of permissions on PCI device unplug

When passing through PCI devices, the detach logic in libxl won't remove access permissions to any 64bit memory BARs the device might have. As a result a domain can still have access any 64bit memory BAR when such device is no longer assigned to the domain. For PV domains the permission leak allo...

6.4AI score0.00396EPSS
Exploits0References1
CVE
CVE
added 2025/10/31 11:50 a.m.33 views

CVE-2025-58149

CVE-2025-58149 affects the Xen hypervisor. The detach logic for PCI devices fails to remove access permissions to 64‑bit memory BARs when a device is unplugged, allowing PV guests to access memory of devices no longer assigned to them (HVM implications noted with required compromised device model...

7.5CVSS6.4AI score0.00396EPSS
Exploits0References3Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2017-14629

Malware in sbrugna...

6.5CVSS7.7AI score0.00398EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2017-14680

Malware in sbrugna...

6.5CVSS6.8AI score0.00399EPSS
Exploits0References11
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2016-1343

Malware in sbrugna...

6CVSS7.4AI score0.00405EPSS
Exploits0References13
OSV
OSV
added 2025/06/18 9:28 a.m.7 views

CVE-2025-38016 HID: bpf: abort dispatch if device destroyed

In the Linux kernel, the following vulnerability has been resolved: HID: bpf: abort dispatch if device destroyed The current HID bpf implementation assumes no output report/request will go through it after hidbpfdestroydevice has been called. This leads to a bug that unplugging certain types of H...

5.5CVSS7.2AI score0.00161EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2023/11/03 9:15 p.m.2 views

CVE-2023-47233

The brcm80211 component in the Linux kernel through 6.5.10 has a brcmfcfg80211detach use-after-free in the device unplugging disconnect the USB by hotplug code. For physically proximate attackers with local access, this "could be exploited in a real world scenario." This is related to...

4.3CVSS6.7AI score0.00315EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2023/02/15 4:54 a.m.5 views

SUSE CVE-2016-10155

Memory leak in hw/watchdog/wdti6300esb.c in QEMU aka Quick Emulator allows local guest OS privileged users to cause a denial of service host memory consumption and QEMU process crash via a large number of device unplug operations...

6CVSS8.3AI score0.00405EPSS
Exploits0References14
Veracode
Veracode
added 2020/09/21 6:25 a.m.26 views

Denial Of Service (DoS)

qemu is vulnerable to denial of service DoS. The vulnerability exists Memory leak in hw/audio/es1370.c in QEMU aka Quick Emulator allows local guest OS privileged users to cause a denial of service host memory consumption and QEMU process crash via a large number of device unplug operations...

6.5CVSS4.7AI score0.00398EPSS
Exploits0References6Affected Software1
Veracode
Veracode
added 2020/09/21 6:18 a.m.32 views

Memory Leak

qemu:xenial is vulnerable to Memory leak. Due to a flaw in hw/audio/ac97.c in QEMU aka Quick Emulator, it allows local guest OS privileged users to cause a denial of service host memory consumption and QEMU process crash via a large number of device unplug operations...

6.5CVSS6AI score0.00399EPSS
Exploits0References7Affected Software1
Veracode
Veracode
added 2019/01/15 9:18 a.m.29 views

Denial Of Service (DoS)

qemu-kvm-rhev is vulnerable to denial of service DoS attacks. The vulnerability exists as a memory leak in hw/watchdog/wdti6300esb.c in QEMU aka Quick Emulator allows local guest OS privileged users to cause a denial of service host memory consumption and QEMU process crash via a large number of...

6CVSS6.6AI score0.00405EPSS
Exploits0References16Affected Software2
RedHat Linux
RedHat Linux
added 2017/08/01 9:17 p.m.7 views

Qemu: serial: host memory leakage 16550A UART emulation

Memory leak in the serialexitcore function in hw/char/serial.c in QEMU aka Quick Emulator allows local guest OS privileged users to cause a denial of service host memory consumption and QEMU process crash via a large number of device unplug operations...

6.5CVSS7.3AI score0.00399EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2017/08/01 4:4 p.m.8 views

Qemu: serial: host memory leakage 16550A UART emulation

Memory leak in the serialexitcore function in hw/char/serial.c in QEMU aka Quick Emulator allows local guest OS privileged users to cause a denial of service host memory consumption and QEMU process crash via a large number of device unplug operations...

6.5CVSS7.3AI score0.00399EPSS
Exploits0References4
NVD
NVD
added 2017/03/15 3:59 p.m.17 views

CVE-2016-10155

Memory leak in hw/watchdog/wdti6300esb.c in QEMU aka Quick Emulator allows local guest OS privileged users to cause a denial of service host memory consumption and QEMU process crash via a large number of device unplug operations...

6CVSS5.8AI score0.00405EPSS
Exploits0References8
NVD
NVD
added 2017/03/15 3:59 p.m.24 views

CVE-2017-5579

Memory leak in the serialexitcore function in hw/char/serial.c in QEMU aka Quick Emulator allows local guest OS privileged users to cause a denial of service host memory consumption and QEMU process crash via a large number of device unplug operations...

6.5CVSS6.2AI score0.00399EPSS
Exploits0References8
OSV
OSV
added 2017/03/15 3:59 p.m.25 views

CVE-2016-10155

Memory leak in hw/watchdog/wdti6300esb.c in QEMU aka Quick Emulator allows local guest OS privileged users to cause a denial of service host memory consumption and QEMU process crash via a large number of device unplug operations...

6CVSS6AI score
Exploits0References8
NVD
NVD
added 2017/03/15 3:59 p.m.19 views

CVE-2017-5525

Memory leak in hw/audio/ac97.c in QEMU aka Quick Emulator allows local guest OS privileged users to cause a denial of service host memory consumption and QEMU process crash via a large number of device unplug operations...

6.5CVSS6.2AI score0.00399EPSS
Exploits0References6
OSV
OSV
added 2017/03/15 3:59 p.m.4 views

ALPINE-CVE-2017-5525

Memory leak in hw/audio/ac97.c in QEMU aka Quick Emulator allows local guest OS privileged users to cause a denial of service host memory consumption and QEMU process crash via a large number of device unplug operations...

6.5CVSS6.3AI score0.00399EPSS
Exploits0References1
Rows per page
Query Builder