CVE-2025-48517

Insufficient Granularity of Access Control in SEV firmware could allow a privileged user with a malicious hypervisor to create a SEV-ES guest with an ASID in the range meant for SEV-SNP guests potentially resulting in a partial loss of confidentiality...

CVE-2025-29948

CVE-2025-29948 affects AMD Secure Encrypted Virtualization (SEV) firmware. The issue is improper access control that could allow a malicious hypervisor to bypass RMP protections, potentially compromising SEV-SNP guest memory integrity. Affected software is SEV firmware; the root cause is access-c...

CVE-2025-29948

Improper access control in AMD Secure Encrypted Virtualization SEV firmware could allow a malicious hypervisor to bypass RMP protections, potentially resulting in a loss of SEV-SNP guest memory integrity...

[SECURITY] Fedora 43 Update: rust-snpguest-0.9.2-4.fc43

Navigation utility for AMD SEV-SNP guest environment...

[SECURITY] Fedora 43 Update: rust-sevctl-0.6.2-6.fc43

Administrative utility for AMD SEV...

[SECURITY] Fedora 43 Update: atuin-18.6.1-10.fc43

Atuin replaces your existing shell history with a SQLite database, and records additional context for your commands. Additionally, it provides optional and fully encrypted synchronization of your history between machines, via an Atuin server...

PT-2026-7450

Name of the Vulnerable Software and Affected Versions AMD Secure Encrypted Virtualization SEV firmware affected versions not specified Description An improper initialization within the AMD Secure Encrypted Virtualization SEV firmware can allow an attacker with administrator privileges to corrupt...

AMD EPYC Processor 安全漏洞

The AMD EPYC Processor is a series of multi-core processors developed by American semiconductor company AMD. There is a security vulnerability in the AMD EPYC Processor, which stems from improper access control. This vulnerability may lead to a loss of integrity in SEV-SNP guest memory...

PT-2026-7446

Improper access control in secure encrypted virtualization SEV could allow a privileged attacker to write to the reverse map page RMP during secure nested paging SNP initialization, potentially resulting in a loss of guest memory confidentiality and integrity...

munge 安全漏洞

Munge is an identity verification service developed by Chris Dunlap, used for creating and verifying credentials. Versions of MUNGE prior to 0.5.18 contained security vulnerabilities; these vulnerabilities were caused by buffer overflows in Munged, which could lead to the disclosure of encrypted...

PT-2026-7445

A use after free in the SEV firmware could allow a malicous hypervisor to activate a migrated guest with the SINGLE SOCKET policy on a different socket than the migration agent potentially resulting in loss of integrity...

Linux Distros Unpatched Vulnerability : CVE-2025-48514

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient Granularity of Access Control in SEV firmware can allow a privileged attacker to create a SEV-ES Guest to attack SNP guest, potentially resulting i...

AMD EPYC 9005 Series 安全漏洞

The AMD EPYC 9005 Series is a series of processors developed by Advanced Microelectronics Devices, Inc. AMD. There are security vulnerabilities in the AMD EPYC 9005 Series. These vulnerabilities stem from improper handling of error conditions during host failures, which may allow privileged local...

AMD EPYC™ and AMD EPYC™ Embedded Series Processor Vulnerabilities – February 2026

CVE Details Refer to Glossary for explanation of terms CVE| CVE Description| CVSS Score| CVSS Vector ---|---|---|--- CVE-2025-52533| Improper access control in an on-chip debug interface could allow a privileged attacker to enable a debug interface and potentially compromise data confidentiality ...

PT-2026-7448

Name of the Vulnerable Software and Affected Versions AMD Secure Encrypted Virtualization SEV firmware affected versions not specified Description An access control issue in AMD Secure Encrypted Virtualization SEV firmware may allow a malicious hypervisor to circumvent RMP protections. This could...

openSUSE Security Advisory (SUSE-SU-2026:0388-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : MozillaThunderbird (SUSE-SU-2026:0388-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:0388-1 advisory. Update to Mozilla Thunderbird 140.7.1 MFSA 2026-08 bsc1257397: - CVE-2026-0818: CSS-based exfiltration of...

SUSE-SU-2026:0388-1 Security update for MozillaThunderbird

This update for MozillaThunderbird fixes the following issues: Update to Mozilla Thunderbird 140.7.1 MFSA 2026-08 bsc1257397: - CVE-2026-0818: CSS-based exfiltration of the content from partially encrypted emails when allowing remote content...

TP-LINK多款产品 安全漏洞

TP-LINK Tapos are products of the TP-LINK company from China. The TP-LINK Tapo is a series of secure Wi-Fi cameras. The TP-Link Tapo H100 is also a product of the TP-LINK company. The TP-Link Tapo H100 is an intelligent IoT gateway. The TP-Link Tapo P100 is also an intelligent IoT gateway. Both t...

CVE-2025-12774

A vulnerability in the migration script for Brocade SANnav before 3.0 could allow the collection of database sql queries in the SANnav support save file. An attacker with access to Brocade SANnav supportsave file, could open the file and then obtain sensitive information such as details of databa...