2180 matches found
Exploit for OS Command Injection in Cyberpanel
PoC: CVE-2024-51378 Command Injection, эмуляция 📌 Описан...
php: PHP: Denial of Service via invalid character sequence in PDO PostgreSQL prepared statement
A flaw was found in PHP. When the PDO PHP Data Objects PostgreSQL driver is configured with PDO::ATTREMULATEPREPARES enabled, a remote attacker can exploit a vulnerability by providing an invalid character sequence within a prepared statement parameter. This can cause a null pointer dereference,...
AttackMate: Realistic Emulation and Automation of Cyber Attack Scenarios across the Kill Chain
Adversary emulation tools facilitate scripting and automated execution of cyber attack chains, thereby reducing costs and manual expert effort required for security testing, cyber exercises, and intrusion detection research. However, due to the fact that existing tools typically rely on agents...
MiracleLinux 8 : container-tools:1.0 (AXSA:2020-294:01)
The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-294:01 advisory. QEMU: slirp: OOB buffer access while emulating tcp protocols in tcpemu CVE-2020-7039 Modularity name: container-tools Stream name: 1.0 Tenable has extracted t...
MiracleLinux 8 : virt:rhel and virt-devel:rhel (AXSA:2021-2165:01)
The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2165:01 advisory. libvirt: double free in qemuAgentGetInterfaces in qemuagent.c CVE-2020- 25637 QEMU: heap buffer overflow in msixtablemmiowrite in hw/pci/msix.c...
[SECURITY] Fedora 42 Update: foomuuri-0.31-1.fc42
Foomuuri is a firewall generator for nftables based on the concept of zones. It is suitable for all systems from personal machines to corporate firewalls, and supports advanced features such as a rich rule language, IPv4/IPv6 rule splitting, dynamic DNS lookups, a D-Bus API and FirewallD emulatio...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003866)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003866 advisory. An out-of-bounds memory write issue was found in the Linux Kernel, version 3.13 through 5.4, in the way the Linux kernel's KVM hypervisor handled the...
MiracleLinux 7 : kernel-3.10.0-693.21.1.el7 (AXSA:2018-2625:03)
The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2018-2625:03 advisory. Kernel: KVM: MMU potential stack buffer overrun during page walks CVE-2017-12188, Important Kernel: KVM: debug exception via syscall emulation...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004756)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004756 advisory. A NULL pointer dereference flaw was found in the Linux kernels KVM module, which can lead to a denial of service in the x86emulateinsn in arch/x86/kvm/emulate.c. Thi...
MiracleLinux 7 : qemu-kvm-1.5.3-167.el7 (AXSA:2019-4177:04)
The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2019-4177:04 advisory. QEMU: Slirp: information leakage in tcpemu due to uninitialized stack variables CVE-2019-9824 Tenable has extracted the preceding description block directly...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004380)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004380 advisory. A flaw was discovered in the way that the KVM hypervisor handled instruction emulation for an L2 guest when nested virtualisation is enabled. Under some circumstance...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004242)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004242 advisory. An out-of-bounds memory write issue was found in the Linux Kernel, version 3.13 through 5.4, in the way the Linux kernel's KVM hypervisor handled the...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001591)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001591 advisory. A flaw was found in the Linux kernel before version 4.12 in the way the KVM module processed the trap flagTF bit in EFLAGS during emulation of the syscall instructio...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001338)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001338 advisory. arch/x86/kvm/emulate.c in the Linux kernel through 4.9.3 allows local users to obtain sensitive information from kernel memory or cause a denial of service...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002853)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002853 advisory. arch/x86/kvm/emulate.c in the Linux kernel through 4.9.3 allows local users to obtain sensitive information from kernel memory or cause a denial of service...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002570)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002570 advisory. The nestedvmxcheckvmptr function in arch/x86/kvm/vmx.c in the Linux kernel through 4.9.8 improperly emulates the VMXON instruction, which allows KVM L1 guest OS user...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002746)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002746 advisory. A flaw was found in the way Linux kernel KVM hypervisor before 4.18 emulated instructions such as sgdt/sidt/fxsave/fxrstor. It did not check current privilegeCPL lev...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002101)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002101 advisory. The emsysenter function in arch/x86/kvm/emulate.c in the Linux kernel before 3.18.5, when the guest OS lacks SYSENTER MSR initialization, allows guest OS users to ga...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002442)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002442 advisory. Race condition in the kvmmigratepittimer function in arch/x86/kvm/i8254.c in the KVM subsystem in the Linux kernel through 3.17.2 allows guest OS users to cause a...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002700)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002700 advisory. arch/x86/kvm/emulate.c in the Linux kernel through 4.9.3 allows local users to obtain sensitive information from kernel memory or cause a denial of service...