Lucene search
K

65 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Disable coherent dumb buffers without 3D. Coherent surfaces make sense only if the host renders to them using accelerated APIs. Without 3D, all the content in dumb buffers remains on the guest, making all the addition...

5.5CVSS5.4AI score0.00177EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/06/05 7:50 p.m.7 views

CVE-2026-34193

Kernel software installed and running inside a Guest/Host VM may post improper commands to the GPU Firmware to trigger a write of data outside the intended GPU memory. A logic error in the address translation allowed a compromised Host Kernel to perform arbitrary writes to firmware memory...

4.3CVSS5.6AI score0.00143EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/01 11:14 a.m.10 views

CVE-2026-34193 GPU DDK - Arbitrary write via UFO updates due insufficient pointer validation in rgxfw_to_ptr()

Kernel software installed and running inside a Guest/Host VM may post improper commands to the GPU Firmware to trigger a write of data outside the intended GPU memory. A logic error in the address translation allowed a compromised Host Kernel to perform arbitrary writes to firmware memory...

5.9AI score0.00143EPSS
Exploits0References1
CVE
CVE
added 2026/06/01 11:14 a.m.22 views

CVE-2026-34193

CVE-2026-34193 affects kernel software running inside a Guest/Host VM that can post improper commands to the GPU firmware. A logic error in address translation enables a compromised Host (Kernel) to perform arbitrary writes to firmware memory, potentially impacting data integrity by writing beyon...

4.3CVSS5.9AI score0.00143EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/10 7:12 p.m.3 views

CVE-2025-52534

Improper bound check within AMD CPU microcode can allow a malicious guest to write to host memory, potentially resulting in loss of integrity...

5.3CVSS5.5AI score0.00297EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/10 7:12 p.m.4 views

CVE-2025-52534

Improper bound check within AMD CPU microcode can allow a malicious guest to write to host memory, potentially resulting in loss of integrity...

5.3CVSS5.5AI score0.00297EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.7 views

MiracleLinux 7 : qemu-kvm-1.5.3-141.el7.6 (AXSA:2018-2500:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2018-2500:01 advisory. An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions a commonly used...

5.6CVSS7.3AI score0.74041EPSS
Exploits8References2
Tenable Nessus
Tenable Nessus
added 2025/12/16 12:0 a.m.4 views

Ubuntu 24.04 LTS / 25.04 : Linux kernel (Azure) vulnerabilities (USN-7934-1)

The remote Ubuntu 24.04 LTS / 25.04 host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7934-1 advisory. It was discovered that improper initialization of CPU cache memory could allow a local attacker with hypervisor access to overwrite SEV-SNP guest...

9.8CVSS7.7AI score0.08942EPSS
Exploits4References206
Ubuntu
Ubuntu
added 2025/12/15 5:1 p.m.5 views

USN-7933-1: Linux kernel (KVM) vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

7.8CVSS7.3AI score0.0037EPSS
Exploits3
OSV
OSV
added 2025/12/15 5:1 p.m.5 views

USN-7933-1 linux-kvm vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

7.8CVSS6.5AI score0.0037EPSS
Exploits3References187
Ubuntu
Ubuntu
added 2025/12/04 5:49 p.m.4 views

USN-7874-3: Linux kernel (IoT) vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

7.8CVSS7.5AI score0.01345EPSS
Exploits8
OSV
OSV
added 2025/11/19 9:1 p.m.8 views

USN-7875-1 linux-oracle vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

9.1CVSS6.4AI score0.01367EPSS
Exploits8References29
RedHat Linux
RedHat Linux
added 2025/11/11 9:13 a.m.5 views

kernel: KVM: VMX: Bury Intel PT virtualization (guest/host mode) behind CONFIG_BROKEN

In the Linux kernel, the following vulnerability has been resolved: KVM: VMX: Bury Intel PT virtualization guest/host mode behind CONFIGBROKEN Hide KVM's ptmode module param behind CONFIGBROKEN, i.e. disable support for virtualizing Intel PT via guest/host mode unless BROKEN=y. There are myriad...

6.5CVSS6.8AI score0.00231EPSS
Exploits0References5
Ubuntu
Ubuntu
added 2025/11/07 10:35 a.m.8 views

USN-7860-3: Linux kernel (FIPS) vulnerability

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

5.5CVSS7.4AI score0.00331EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/11/07 12:0 a.m.3 views

Ubuntu 20.04 LTS / 22.04 LTS : Linux kernel vulnerability (USN-7862-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-7862-1 advisory. Jean-Claude Graf, Sandro Regge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation...

5.5CVSS6.9AI score0.00331EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2025/11/06 9:10 a.m.14 views

USN-7861-1: Linux kernel vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

7.8CVSS7.4AI score0.01345EPSS
Exploits8
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-8214

Malware in sbrugna...

8.8CVSS8.6AI score0.00427EPSS
Exploits0References12
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-51533

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00382EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2024-51807

Malicious code in bioql PyPI...

6.5CVSS7.5AI score0.00231EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/05/22 5:18 a.m.4 views

CVE-2019-5146

An exploitable out-of-bounds read vulnerability exists in AMD ATIDXX64.DLL driver, version 26.20.13025.10004. A specially crafted pixel shader can cause a denial of service. An attacker can provide a specially crafted shader file to trigger this vulnerability. This vulnerability can be triggered...

8.6CVSS6.6AI score0.01705EPSS
Exploits0References1
Rows per page
Query Builder