EUVD-2006-0167

Malware in sbrugna...

EUVD-2006-0118

Malware in sbrugna...

Malicious code in romanes-eunt-domus-jd-1337 (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1202a9a3614d98b7264d1a234429ca6a79c68ee4d57f620f402d831f7747b38a Any computer that has this package install...

domus-srl.it Cross Site Scripting vulnerability OBB-3620777

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

domus-srl.it Cross Site Scripting vulnerability OBB-3061202

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Denial Of Service (DoS)

xen/arm is vulnerable to denial of service. No memory limit for dom0less domUs The dom0less feature allows an administrator to create multiple unprivileged domains directly from Xen. Unfortunately, the memory limit from them is not set. This allow a domain to allocate memory beyond what an...

CVE-2021-28700

xen/arm: No memory limit for dom0less domUs The dom0less feature allows an administrator to create multiple unprivileged domains directly from Xen. Unfortunately, the memory limit from them is not set. This allow a domain to allocate memory beyond what an administrator originally configured...

Design/Logic Flaw

xen/arm: No memory limit for dom0less domUs The dom0less feature allows an administrator to create multiple unprivileged domains directly from Xen. Unfortunately, the memory limit from them is not set. This allow a domain to allocate memory beyond what an administrator originally configured...

CVE-2021-28700

Summary: CVE-2021-28700 affects the Xen hypervisor, specifically the dom0less domU path on ARM, where the memory limit for unprivileged domains is not set. This can allow a domain to allocate more memory than configured. The issue is listed among Xen vulnerabilities (XSA-383) and appears in multi...

CVE-2021-28700

xen/arm: No memory limit for dom0less domUs The dom0less feature allows an administrator to create multiple unprivileged domains directly from Xen. Unfortunately, the memory limit from them is not set. This allow a domain to allocate memory beyond what an administrator originally configured...

CVE-2019-14453

An issue was discovered in Comelit "App lejos de casa web" 2.8.0. It allows privilege escalation via modified domus and logged fields, related to js/bridge.min.js and login.json. For example, an attacker can achieve high privileges installer or administrator for the graphical interface via a...

Privilege escalation

An issue was discovered in Comelit "App lejos de casa web" 2.8.0. It allows privilege escalation via modified domus and logged fields, related to js/bridge.min.js and login.json. For example, an attacker can achieve high privileges installer or administrator for the graphical interface via a...

domus-materiaux.fr Cross Site Scripting vulnerability OBB-1302194

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

openSUSE: Security Advisory for xen (openSUSE-SU-2019:1403-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

openSUSE Security Update : xen (openSUSE-2019-1403) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)

This update for xen fixes the following issues : Four new speculative execution information leak issues have been identified in Intel CPUs. bsc1111331 - CVE-2018-12126: Microarchitectural Store Buffer Data Sampling MSBDS - CVE-2018-12127: Microarchitectural Fill Buffer Data Sampling MFBDS -...

SUSE SLED15 / SLES15 Security Update : xen (SUSE-SU-2019:1248-1) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)

This update for xen fixes the following issues : Four new speculative execution information leak issues have been identified in Intel CPUs. bsc1111331 CVE-2018-12126: Microarchitectural Store Buffer Data Sampling MSBDS CVE-2018-12127: Microarchitectural Fill Buffer Data Sampling MFBDS...

Security update for xen (important)

openSUSE Security Update: Security update for xen Announcement ID: openSUSE-SU-2019:1226-1 Rating: important References: 1026236 1027519 1069468 1105528 1114988 1115040 1115045 1115047 1116380 1117756 1119161 1123157 1126140 1126141 1126192 1126195 1126196 1126197 1126198 1126201 1126325 1127400...

SUSE SLED12 / SLES12 Security Update : xen (SUSE-SU-2019:0891-1)

This update for xen fixes the following issues : Security issues fixed : Fixed an issue which could allow malicious PV guests may cause a host crash or gain access to data pertaining to other guests.Additionally, vulnerable configurations are likely to be unstable even in the absence of an attack...

domus-nekretnine.hr XSS vulnerability

Open Bug Bounty ID: OBB-649896 Description| Value ---|--- Affected Website:| domus-nekretnine.hr Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

domus-boavista-habinedita-5587.empreendimentos.com.pt XSS vulnerability

Open Bug Bounty ID: OBB-629053 Description| Value ---|--- Affected Website:| domus-boavista-habinedita-5587.empreendimentos.com.pt Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting /...