Lucene search
K

31 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-6453

Malware in sbrugna...

6.5CVSS7.3AI score0.01196EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-8435

Malware in sbrugna...

8.6CVSS8.5AI score0.02254EPSS
Exploits0References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2007-4974

Malware in sbrugna...

6.9CVSS6AI score0.00633EPSS
Exploits0References26
RedhatCVE
RedhatCVE
added 2024/03/20 8:28 p.m.43 views

CVE-2023-46839

PCI devices can make use of a functionality called phantom functions, that when enabled allows the device to generate requests using the IDs of functions that are otherwise unpopulated. This allows a device to extend the number of outstanding requests. Such phantom functions need an IOMMU context...

5.5CVSS6.8AI score0.00805EPSS
Exploits0References4
OSV
OSV
added 2024/03/20 11:15 a.m.4 views

ALPINE-CVE-2023-46839

PCI devices can make use of a functionality called phantom functions, that when enabled allows the device to generate requests using the IDs of functions that are otherwise unpopulated. This allows a device to extend the number of outstanding requests. Such phantom functions need an IOMMU context...

5.3CVSS6.9AI score0.00805EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/03/20 10:35 a.m.49 views

CVE-2023-46839 pci: phantom functions assigned to incorrect contexts

PCI devices can make use of a functionality called phantom functions, that when enabled allows the device to generate requests using the IDs of functions that are otherwise unpopulated. This allows a device to extend the number of outstanding requests. Such phantom functions need an IOMMU context...

4.5AI score0.00805EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/03/20 10:35 a.m.21 views

CVE-2023-46839 pci: phantom functions assigned to incorrect contexts

PCI devices can make use of a functionality called phantom functions, that when enabled allows the device to generate requests using the IDs of functions that are otherwise unpopulated. This allows a device to extend the number of outstanding requests. Such phantom functions need an IOMMU context...

7.1AI score0.00805EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2024/03/20 10:35 a.m.30 views

CVE-2023-46839

PCI devices can make use of a functionality called phantom functions, that when enabled allows the device to generate requests using the IDs of functions that are otherwise unpopulated. This allows a device to extend the number of outstanding requests. Such phantom functions need an IOMMU context...

5.3CVSS4.2AI score0.00805EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2024/01/31 2:55 a.m.6 views

SUSE CVE-2023-46839

PCI devices can make use of a functionality called phantom functions, that when enabled allows the device to generate requests using the IDs of functions that are otherwise unpopulated. This allows a device to extend the number of outstanding requests. Such phantom functions need an IOMMU context...

4.1CVSS5.4AI score0.00805EPSS
Exploits0References10
SUSE CVE
SUSE CVE
added 2023/02/15 5:11 a.m.4 views

SUSE CVE-2015-8555

Xen 4.6.x, 4.5.x, 4.4.x, 4.3.x, and earlier do not initialize x86 FPU stack and XMM registers when XSAVE/XRSTOR are not used to manage guest extended register state, which allows local guest domains to obtain sensitive information from other domains via unspecified vectors...

8.6CVSS6.2AI score0.02254EPSS
Exploits0References12
SUSE CVE
SUSE CVE
added 2023/02/15 4:41 a.m.7 views

SUSE CVE-2017-12855

Xen maintains the GTFread,writing bits as appropriate, to inform the guest that a grant is in use. A guest is expected not to modify the grant details while it is in use, whereas the guest is free to modify/reuse the grant entry when it is not in use. Under some circumstances, Xen will clear the...

6.5CVSS8.9AI score0.00398EPSS
Exploits0References12
SUSE CVE
SUSE CVE
added 2023/02/15 3:59 a.m.4 views

SUSE CVE-2020-11742

An issue was discovered in Xen through 4.13.x, allowing guest OS users to cause a denial of service because of bad continuation handling in GNTTABOPcopy. Grant table operations are expected to return 0 for success, and a negative number for errors. The fix for CVE-2017-12135 introduced a path...

4.3CVSS6.6AI score0.00409EPSS
Exploits0References14
OSV
OSV
added 2021/11/24 1:15 a.m.2 views

DEBIAN-CVE-2021-28707

PoD operations on misaligned GFNs This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. x86 HVM and PVH guests may be started in populate-on-demand PoD mode, to provide a way for them to later easily have more memory assigne...

8.8CVSS8AI score0.00348EPSS
Exploits0References1
NVD
NVD
added 2021/05/27 8:15 p.m.27 views

CVE-2020-14301

An information disclosure vulnerability was found in libvirt in versions before 6.3.0. HTTP cookies used to access network-based disks were saved in the XML dump of the guest domain. This flaw allows an attacker to access potentially sensitive information in the domain configuration via the dumpx...

6.5CVSS0.01196EPSS
Exploits0References2
OSV
OSV
added 2021/05/27 8:15 p.m.38 views

CVE-2020-14301

An information disclosure vulnerability was found in libvirt in versions before 6.3.0. HTTP cookies used to access network-based disks were saved in the XML dump of the guest domain. This flaw allows an attacker to access potentially sensitive information in the domain configuration via the dumpx...

6.5CVSS6AI score
Exploits0References2
UbuntuCve
UbuntuCve
added 2021/05/27 8:15 p.m.32 views

CVE-2020-14301

An information disclosure vulnerability was found in libvirt in versions before 6.3.0. HTTP cookies used to access network-based disks were saved in the XML dump of the guest domain. This flaw allows an attacker to access potentially sensitive information in the domain configuration via the dumpx...

6.5CVSS6.9AI score0.01196EPSS
Exploits0References1
Prion
Prion
added 2021/05/27 8:15 p.m.33 views

Information disclosure

An information disclosure vulnerability was found in libvirt in versions before 6.3.0. HTTP cookies used to access network-based disks were saved in the XML dump of the guest domain. This flaw allows an attacker to access potentially sensitive information in the domain configuration via the dumpx...

4CVSS6.1AI score0.01196EPSS
Exploits0References2Affected Software11
CVE
CVE
added 2021/05/27 7:44 p.m.182 views

CVE-2020-14301

CVE-2020-14301 is an information-disclosure in libvirt prior to 6.3.0 where HTTP cookies used to access network-based disks were saved in a guest domain’s dumpxml XML, enabling access to sensitive domain configuration data. Affected: libvirt

6.5CVSS6.8AI score0.01196EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/05/27 7:44 p.m.38 views

CVE-2020-14301

An information disclosure vulnerability was found in libvirt in versions before 6.3.0. HTTP cookies used to access network-based disks were saved in the XML dump of the guest domain. This flaw allows an attacker to access potentially sensitive information in the domain configuration via the dumpx...

6.9AI score0.01196EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2020/07/28 7:14 a.m.4 views

libvirt: leak of sensitive cookie information via dumpxml

An information disclosure vulnerability was found in libvirt. HTTP cookies used to access network-based disks were saved in the XML dump of the guest domain. This flaw could allow a malicious user with a read-only connection to access potentially sensitive information in the domain configuration...

6.5CVSS7.3AI score0.01196EPSS
Exploits0References4
Rows per page
Query Builder