Lucene search
+L

6 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/21 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2023-31347

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Due to a code bug in SecureTSC, SEV firmware may allow an attacker with high privileges to cause a guest to observe an incorrect TSC when Secure TSC is enabled...

4.9CVSS6.2AI score0.0046EPSS
Exploits0References2
OSV
OSV
added 2024/12/13 1:18 p.m.4 views

OESA-2024-2549 linux-firmware security update

This package contains firmware images required by some devices. Security Fixes: IOMMU improperly handles certain special address ranges with invalid device table entries DTEs, which may allow an attacker with privileges and a compromised Hypervisor to induce DTE faults to bypass RMP checks in...

6CVSS6.7AI score0.00199EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2024/10/02 1:4 a.m.7 views

kernel: hw:amd:IOMMU improperly handles certain special address leading to a loss of guest integrity

A flaw was found in the way AMD IOMMU handles certain special address ranges with invalid device table entries DTEs, which may allow an attacker with privileges and a compromised Hypervisor to induce DTE faults to bypass RMP checks in SEV-SNP, potentially leading to a loss of guest integrity...

6CVSS7.1AI score0.00174EPSS
Exploits0References5
OSV
OSV
added 2024/08/13 5:15 p.m.3 views

DEBIAN-CVE-2023-20584

IOMMU improperly handles certain special address ranges with invalid device table entries DTEs, which may allow an attacker with privileges and a compromised Hypervisor to induce DTE faults to bypass RMP checks in SEV-SNP, potentially leading to a loss of guest integrity...

6CVSS5.5AI score0.00174EPSS
Exploits0References1
OSV
OSV
added 2024/02/13 8:15 p.m.3 views

UBUNTU-CVE-2023-31347

Due to a code bug in SecureTSC, SEV firmware may allow an attacker with high privileges to cause a guest to observe an incorrect TSC when Secure TSC is enabled potentially resulting in a loss of guest integrity...

4.9CVSS5.8AI score0.0046EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/11/14 12:0 a.m.5 views

PT-2023-8273 · Amd +1 · Amd Snp Guest Context Page Handler +1

Name of the Vulnerable Software and Affected Versions: AMD SNP Guest Context Page Handler affected versions not specified Description: A Use-After-Free vulnerability in the management of an SNP guest context page may allow a malicious hypervisor to masquerade as the guest's migration agent,...

9.8CVSS6.4AI score0.01018EPSS
Exploits0References29
Rows per page
Query Builder