Lucene search
K

370 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 3:54 a.m.6 views

CVE-2023-32684

Lima launches Linux virtual machines, typically on macOS, for running containerd. Prior to version 0.16.0, a virtual machine instance with a malicious disk image could read a single file on the host filesystem, even when no filesystem is mounted from the host. The official templates of Lima and t...

2.7CVSS6.5AI score0.00268EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:1 a.m.10 views

CVE-2010-0497

Disk Images in Apple Mac OS X before 10.6.3 does not provide the expected warning for an unsafe file type in an internet enabled disk image, which makes it easier for user-assisted remote attackers to execute arbitrary code via a package file type...

6.8CVSS7.6AI score0.02522EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/05/06 12:0 a.m.24 views

CBL Mariner 2.0 Security Update: qemu (CVE-2024-4467)

The version of qemu installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-4467 advisory. - A flaw was found in the QEMU disk image utility qemu-img 'info' command. A specially crafted image file...

7.8CVSS7.2AI score0.00333EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/04/15 12:0 a.m.7 views

RHEL 6 : openstack-nova (RHSA-2014:0112)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2014:0112 advisory. The openstack-nova packages provide OpenStack Compute nova, which provides services for provisioning, managing, and using virtual machine...

4.3CVSS5.5AI score0.01884EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2024-4467

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the QEMU disk image utility qemu-img 'info' command. A specially crafted image file containing a json: value describing block devices in QMP...

7.8CVSS7.1AI score0.00333EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2014-0147

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Qemu before 1.6.2 block diver for the various disk image formats used by Bochs and for the QCOW version 2 format, are vulnerable to a possible crash caused by...

6.2CVSS6.9AI score0.00329EPSS
Exploits1References2
NVD
NVD
added 2025/02/14 9:15 p.m.9 views

CVE-2024-31144

For a brief summary of Xapi terminology, see: https://xapi-project.github.io/xen-api/overview.htmlobject-model-overview Xapi contains functionality to backup and restore metadata about Virtual Machines and Storage Repositories SRs. The metadata itself is stored in a Virtual Disk Image VDI inside ...

3.8CVSS0.00209EPSS
Exploits0References3
OSV
OSV
added 2025/02/14 9:15 p.m.4 views

UBUNTU-CVE-2024-31144

For a brief summary of Xapi terminology, see: https://xapi-project.github.io/xen-api/overview.htmlobject-model-overview Xapi contains functionality to backup and restore metadata about Virtual Machines and Storage Repositories SRs. The metadata itself is stored in a Virtual Disk Image VDI inside ...

3.8CVSS5.8AI score0.00209EPSS
Exploits0References3
CVE
CVE
added 2025/02/14 8:16 p.m.120 views

CVE-2024-31144

CVE-2024-31144 affects Xen/Xapi backup/restore of VM/SR metadata via a VDI metadata store. The vulnerability arises because the host searches VDI images to locate the metadata VDI and restore metadata; a malicious guest can manipulate its disk to appear as a metadata backup, potentially causing m...

3.8CVSS6AI score0.00209EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/02/14 8:16 p.m.9 views

CVE-2024-31144 Xapi: Metadata injection attack against backup/restore functionality

For a brief summary of Xapi terminology, see: https://xapi-project.github.io/xen-api/overview.htmlobject-model-overview Xapi contains functionality to backup and restore metadata about Virtual Machines and Storage Repositories SRs. The metadata itself is stored in a Virtual Disk Image VDI inside ...

6.3AI score0.00209EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/11/04 12:0 a.m.18 views

RHEL 6 : qemu-kvm-rhev (RHSA-2014:0434)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2014:0434 advisory. KVM Kernel-based Virtual Machine is a full virtualization solution for Linux on AMD64 and Intel 64 systems. The qemu-kvm-rhev package provid...

8.6CVSS7.8AI score0.01002EPSS
Exploits3References19
OpenVAS
OpenVAS
added 2024/10/28 12:0 a.m.17 views

Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2024-2746)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8AI score0.00333EPSS
Exploits0References2
OSV
OSV
added 2024/10/16 12:26 p.m.6 views

MAL-2024-9486 Malicious code in @vertiv-co/voidray-sdk-addon-disk-image-write (npm)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score
Exploits0
OSV
OSV
added 2024/10/16 12:25 p.m.4 views

MAL-2024-9485 Malicious code in @vertiv-co/voidray-sdk-addon-disk-image-browse (npm)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score
Exploits0
SUSE CVE
SUSE CVE
added 2024/08/22 3:14 a.m.3 views

SUSE CVE-2023-52900

In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix general protection fault in nilfsbtreeinsert If nilfs2 reads a corrupted disk image and tries to reads a b-tree node block by calling nilfsbtreegetblock against an invalid virtual block address, it returns -ENOENT...

5.5CVSS6.6AI score0.00241EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2024/08/21 6:40 p.m.16 views

CVE-2023-52900

A vulnerability was found in the Linux kernel's nilfs2 file system where improper sanitization checks can result in a general protection fault caused by how the nilfsbtreeinsert function interprets a return value -ENOENT from the nilfsbtreegetblock function. This return value is used to indicate...

5.5CVSS6.2AI score0.00241EPSS
Exploits0References4
OSV
OSV
added 2024/08/21 7:15 a.m.8 views

UBUNTU-CVE-2023-52900

In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix general protection fault in nilfsbtreeinsert If nilfs2 reads a corrupted disk image and tries to reads a b-tree node block by calling nilfsbtreegetblock against an invalid virtual block address, it returns -ENOENT...

5.5CVSS5.9AI score0.00241EPSS
Exploits0References10
Cvelist
Cvelist
added 2024/08/21 6:10 a.m.19 views

CVE-2023-52900 nilfs2: fix general protection fault in nilfs_btree_insert()

In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix general protection fault in nilfsbtreeinsert If nilfs2 reads a corrupted disk image and tries to reads a b-tree node block by calling nilfsbtreegetblock against an invalid virtual block address, it returns -ENOENT...

0.00241EPSS
Exploits0References7
CVE
CVE
added 2024/08/21 6:10 a.m.80 views

CVE-2023-52900

CVE-2023-52900: Linux kernel nilfs2 vulnerability in nilfs_btree_insert() can cause a general protection fault when a corrupted disk image leads __nilfs_btree_get_block() to return -ENOENT. The patch changes this to -EINVAL, causing subsequent b-tree operations to report corruption and return -EI...

5.5CVSS6.7AI score0.00241EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2024/08/20 8:31 p.m.30 views

GO-2023-1803 In Lima, a malicious disk image could read a single file on the host filesystem as a qcow2/vmdk backing file in github.com/lima-vm/lima

In Lima, a malicious disk image could read a single file on the host filesystem as a qcow2/vmdk backing file in github.com/lima-vm/lima...

2.7CVSS3.3AI score0.00268EPSS
Exploits0References4
Rows per page
Query Builder