Lucene search
K

87 matches found

Tenable Nessus
Tenable Nessus
added 2019/05/16 12:0 a.m.49 views

Scientific Linux Security Update : libvirt on SL7.x x86_64 (20190514) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)

Security Fixes : - A flaw was found in the implementation of the 'fill buffer', a mechanism used by modern CPUs when a cache-miss is made on L1 CPU cache. If an attacker can generate a load operation that would create a page fault, the execution will continue speculatively with incorrect data fro...

5.9CVSS6.8AI score0.01553EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2019/05/16 12:0 a.m.56 views

RHEL 7 : Virtualization Manager (RHSA-2019:1205) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)

An update for rhvm-setup-plugins is now available for Red Hat Virtualization 4.3. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

5.9CVSS7AI score0.01553EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2019/05/16 12:0 a.m.42 views

Fedora 29 : kernel / kernel-headers (2019-e6bf55e821) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)

The 5.0.16 stable updates contain a number of important fixes across the tree. Most importantly, these updates address the kernel portion of the MDS CVEs. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has...

5.9CVSS6.9AI score0.01553EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2019/05/16 12:0 a.m.49 views

Ubuntu 16.04 LTS / 18.04 LTS : libvirt update (USN-3985-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3985-1 advisory. Ke Sun, Henrique Kawakami, Kekai Hu, Rodrigo Branco, Giorgi Maisuradze, Dan Horea Lutas, Andrei Lutas, Volodymyr Pikhur, Stephan van Schaik,...

5.9CVSS6.8AI score0.01553EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2019/05/16 12:0 a.m.38 views

Scientific Linux Security Update : qemu-kvm on SL7.x x86_64 (20190514) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)

Security Fixes : - A flaw was found in the implementation of the 'fill buffer', a mechanism used by modern CPUs when a cache-miss is made on L1 CPU cache. If an attacker can generate a load operation that would create a page fault, the execution will continue speculatively with incorrect data fro...

5.9CVSS6.8AI score0.01553EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2019/05/16 12:0 a.m.31 views

Scientific Linux Security Update : kernel on SL7.x x86_64 (20190514) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)

Security Fixes : - A flaw was found in the implementation of the 'fill buffer', a mechanism used by modern CPUs when a cache-miss is made on L1 CPU cache. If an attacker can generate a load operation that would create a page fault, the execution will continue speculatively with incorrect data fro...

5.9CVSS6.8AI score0.01553EPSS
Exploits0References5
ThreatPost
ThreatPost
added 2019/05/15 4:48 p.m.209 views

Intel ZombieLoad Side-Channel Attack: 10 Takeaways

Intel on Tuesday revealed a new class of speculative execution vulnerabilities, dubbed Microarchitectural Data Sampling MDS, which impact all its modern CPUs. The flaws all ultimately depend on different ways of executing side channel attacks to siphon data from impacted systems – and result in...

4.7CVSS0.1AI score0.01553EPSS
Exploits0References25
CheckPoint Security
CheckPoint Security
added 2019/05/15 12:0 a.m.30 views

Check Point Response to Intel Microarchitectural Data Sampling Vulnerabilities (Fallout, RIDL, Zombieload) (CVE-2018-12126 , CVE-2018-12127, CVE-2018-12130, CVE-2019-11091)

Symptoms - Researchers have released information about several vulnerabilities in Intel processors: Under certain conditions, data in microarchitectural structures that the currently-running software does not have permission to access may be speculatively accessed by faulting or assisting load or...

5.6CVSS6.5AI score0.01553EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/05/15 12:0 a.m.45 views

Ubuntu 18.10 : Linux kernel vulnerabilities (USN-3980-1) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)

Ke Sun, Henrique Kawakami, Kekai Hu, Rodrigo Branco, Giorgi Maisuradze, Dan Horea Lutas, Andrei Lutas, Volodymyr Pikhur, Stephan van Schaik, Alyssa Milburn, Sebastian Osterlund, Pietro Frigo, Kaveh Razavi, Herbert Bos, Cristiano Giuffrida, Moritz Lipp, Michael Schwarz, and Daniel Gruss discovered...

8.3CVSS7.7AI score0.03844EPSS
Exploits1References11
Tenable Nessus
Tenable Nessus
added 2019/05/15 12:0 a.m.42 views

Ubuntu 14.04 LTS : linux vulnerabilities (USN-3983-1) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)

Ke Sun, Henrique Kawakami, Kekai Hu, Rodrigo Branco, Giorgi Maisuradze, Dan Horea Lutas, Andrei Lutas, Volodymyr Pikhur, Stephan van Schaik, Alyssa Milburn, Sebastian Osterlund, Pietro Frigo, Kaveh Razavi, Herbert Bos, Cristiano Giuffrida, Moritz Lipp, Michael Schwarz, and Daniel Gruss discovered...

5.9CVSS6.6AI score0.01553EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2019/05/15 12:0 a.m.30 views

SUSE SLED15 / SLES15 Security Update : xen (SUSE-SU-2019:1248-1) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)

This update for xen fixes the following issues : Four new speculative execution information leak issues have been identified in Intel CPUs. bsc1111331 CVE-2018-12126: Microarchitectural Store Buffer Data Sampling MSBDS CVE-2018-12127: Microarchitectural Fill Buffer Data Sampling MFBDS...

5.9CVSS6.9AI score0.01553EPSS
Exploits0References17
Tenable Nessus
Tenable Nessus
added 2019/05/15 12:0 a.m.43 views

Amazon Linux 2 : kernel (ALAS-2019-1205) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)

Microarchitectural Store Buffer Data Sampling MSBDS CVE-2018-12126 - Microarchitectural Fill Buffer Data Sampling MFBDS CVE-2018-12130 - Microarchitectural Load Port Data Sampling MLPDS CVE-2018-12127 - Microarchitectural Data Sampling Uncacheable Memory MDSUM CVE-2019-11091 MSBDS leaks Store...

5.9CVSS6.6AI score0.01553EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2019/05/15 12:0 a.m.51 views

RHEL 7 : libvirt (RHSA-2019:1186)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:1186 advisory. The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems...

5.9CVSS7.1AI score0.01553EPSS
Exploits0References11
Qualys Blog
Qualys Blog
added 2019/05/14 6:46 p.m.196 views

May 2019 Patch Tuesday – 79 Vulns, 22 Critical, RDP RCE, MDS Attacks, Adobe Vulns

This month's Microsoft Patch Tuesday addresses 79 vulnerabilities with 22 of them labeled as Critical. Of the 22 Critical vulns, 18 are for scripting engines and browsers. The remaining 4 are remote code execution RCE in Remote Desktop, DHCP Server, GDI+, and Word. Microsoft also released guidanc...

10CVSS1.1AI score0.99999EPSS
Exploits124
ThreatPost
ThreatPost
added 2019/05/14 6:1 p.m.139 views

Intel CPUs Impacted By New Class of Spectre-Like Attacks

A new class of side channel vulnerabilities impacting all modern Intel chips have been disclosed, which can use speculative execution to potentially leak sensitive data from a system’s CPU. Intel said that the newest class of vulnerabilities, dubbed Microarchitectural Data Sampling MDS, consist o...

4.7CVSS0.2AI score0.01553EPSS
Exploits0References19
Lenovo
Lenovo
added 2019/05/14 4:38 p.m.32 views

Microarchitectural Data Sampling (MDS) Side Channel Vulnerabilities - Lenovo Support US

No description provided...

5.9CVSS6.5AI score0.01553EPSS
Exploits0
Lenovo
Lenovo
added 2019/05/14 4:38 p.m.501 views

Microarchitectural Data Sampling (MDS) Side Channel Vulnerabilities - US

Lenovo Security Advisory: LEN-26696 Potential Impact: Information disclosure Severity: Medium Scope of Impact: Industry-wide CVE Identifier: CVE-2018-12126 - Microarchitectural Store Buffer Data Sampling MSBDS CVE-2018-12127 - Microarchitectural Load Port Data Sampling MLPDS CVE-2018-12130 -...

4.7CVSS1.9AI score0.01553EPSS
Exploits0
Malwarebytes
Malwarebytes
added 2019/05/14 3:57 p.m.635 views

Exploit kits: spring 2019 review

Exploit kit activity remains fairly unchanged since our last winter review in terms of active distribution campaigns. But this spring edition will feature a new exploit kit and another atypical EK, in that it specifically goes after routers. The main driver behind these drive-by download attacks...

10CVSS9.3AI score0.89618EPSS
Exploits40
Hewlett-Packard
Hewlett-Packard
added 2019/05/14 12:0 a.m.60 views

HPSBHF03618 rev. 8 - Intel Microarchitectural Data Sampling Security Updates

Potential Security Impact Information Disclosure Source : HP, HP Product Security Response Team PSRT Reported By : Intel VULNERABILITY SUMMARY Potential security vulnerabilities in Intel CPUs may allow information disclosure. Researchers have referred to these vulnerabilities as ZombieLoad, RIDL,...

6.5CVSS0.9AI score0.01553EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/05/14 12:0 a.m.43 views

RHEL 7 : kernel (RHSA-2019:1168)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:1168 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: A flaw was found in the implementation...

5.9CVSS6.9AI score0.01553EPSS
Exploits0References11
Rows per page
Query Builder