MiracleLinux 7 : hivex-1.3.10-6.12.el7 (AXSA:2021-2395:02)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2395:02 advisory. hivex: stack overflow due to recursive call of getchildren CVE-2021-3622 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 8 : virt:rhel (AXSA:2021-2404:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2404:01 advisory. QEMU: msix: OOB access during mmio operations may lead to DoS CVE-2020-13754 hivex: Buffer overflow when provided invalid node key length...

EUVD-2014-9098

Malware in sbrugna...

TencentOS Server 3: hivex (TSSA-2022:0272)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2022:0272 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

Ubuntu 16.04 ESM : hivex vulnerability (USN-5148-2)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-5148-2 advisory. USN-5148-1 fixed a vulnerability in hivex. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Tenable has extracted the...

Moderate: Red Hat Security Advisory: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update

An update for the virt:rhel and virt-devel:rhel modules is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

USN-5148-2: hivex vulnerability

USN-5148-1 fixed a vulnerability in hivex. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Original advisory details: It was discovered that hivex incorrectly handled certain input. An attacker could use this vulnerability to cause a crash or obtain...

USN-5148-2 hivex vulnerability

USN-5148-1 fixed a vulnerability in hivex. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Original advisory details: It was discovered that hivex incorrectly handled certain input. An attacker could use this vulnerability to cause a crash or obtain...

USN-5148-1 hivex vulnerability

It was discovered that hivex incorrectly handled certain input. An attacker could use this vulnerability to cause a crash or obtain sensitive information...

Ubuntu 18.04 LTS / 20.04 LTS : hivex vulnerability (USN-5148-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-5148-1 advisory. It was discovered that hivex incorrectly handled certain input. An attacker could use this vulnerability to cause a crash or obtain sensitive...

Security update for hivex (moderate)

openSUSE Security Update: Security update for hivex Announcement ID: openSUSE-SU-2021:0806-1 Rating: moderate References: 1185013 Cross-References: CVE-2021-3504 CVSS scores: CVE-2021-3504 NVD : 5.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L CVE-2021-3504 SUSE: 5.4...

CVE-2014-9273

lib/handle.c in Hivex before 1.3.11 allows local users to execute arbitrary code and gain privileges via a small hive files, which triggers an out-of-bounds read or write...