Lucene search
K

3349 matches found

Positive Technologies
Positive Technologies
added 2026/06/09 12:0 a.m.8 views

PT-2026-47900

Name of the Vulnerable Software and Affected Versions Windows Hyper-V affected versions not specified Description An issue in Windows Hyper-V allows an authorized attacker to locally disclose sensitive information to an unauthorized actor, which can affect the system. Recommendations At the momen...

5.5CVSS5AI score0.00459EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/06/09 12:0 a.m.11 views

PT-2026-48005

Name of the Vulnerable Software and Affected Versions Windows Hyper-V affected versions not specified Description An out-of-bounds read in Windows Hyper-V allows an unauthorized attacker to execute arbitrary code locally or remotely, affecting the system. An out-of-bounds read occurs when a progr...

8.4CVSS5.8AI score0.00307EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/06/09 12:0 a.m.14 views

PT-2026-47996

Out-of-bounds read in Windows Hyper-V allows an unauthorized attacker to execute code locally...

8.4CVSS5.7AI score0.00357EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/06/09 12:0 a.m.8 views

Podman 4.8.0 < 5.8.2 PowerShell Command Injection (GHSA-hc8w-h2mf-hp59)

The version of Podman installed on the remote Windows host is prior to 5.8.2. It is, therefore, affected by a command injection vulnerability in the HyperV machine backend. - A command injection vulnerability exists in Podman's HyperV machine backend. The VM image path is inserted into a PowerShe...

8.8CVSS6AI score0.00607EPSS
Exploits0References2
NCSC
NCSC
added 2026/06/02 11:33 a.m.18 views

Vulnerabilities in Microsoft Windows

Microsoft has fixed vulnerabilities in Windows. A malicious party can exploit the vulnerabilities to carry out attacks that can lead to the following categories of damage: - Denial-of-Service DoS - Execution of arbitrary code root/admin privileges - Execution of arbitrary code user privileges -...

9.8CVSS7.3AI score0.72253EPSS
Exploits39
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: HID: hyperv: avoid struct memcpy overrun warning A previous patch addressed the fortified memcpy warning for most builds, but I still encounter this issue with gcc-9: In the file included from include/linux/string.h:254, from...

5.5CVSS6.1AI score0.00128EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: x86/hyperv: Disabling IBT when the hypercall page lacks the ENDBR instruction. On hardware that supports Indirect Branch Tracking IBT, Hyper-V VMs with ConfigVersion 9.3 or later support IBT in the guest. However, current version...

5.2AI score0.00166EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.9 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: Drivers: hv: vmbus: Disabled the option to deactivate sysctlrecordpanicmsg by default in isolated guests. hvpanicpage might contain information sensitive to guests; do not dump this information to Hyper-V by default in isolate...

5.5CVSS6.4AI score0.00264EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: ixgbevf: added the missing negotiatefeatures operation to the Hyper-V ops table. The commit a7075f501bd3 “ixgbevf: fixed mailbox API compatibility by negotiating supported features” added the.negotiatefeatures callback to...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: scsi: storvsc: Fix handling of virtual Fibre Channel timeouts Hyper-V provides the ability to connect Fibre Channel LUNs to the host system and present them as SCSI devices in a guest VM. I/O operations to the vFC device are...

5.5CVSS5.8AI score0.00137EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/05/13 8:22 p.m.10 views

CVE-2026-40402

Use after free in Windows Hyper-V allows an unauthorized attacker to elevate privileges locally...

9.3CVSS6AI score0.00332EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/12 6:30 p.m.13 views

EUVD-2026-29663

Use after free in Windows Hyper-V allows an unauthorized attacker to elevate privileges locally...

9.3CVSS5.8AI score0.00332EPSS
Exploits0References2
NVD
NVD
added 2026/05/12 6:17 p.m.8 views

CVE-2026-40402

Use after free in Windows Hyper-V allows an unauthorized attacker to elevate privileges locally...

9.3CVSS0.00332EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/12 4:59 p.m.6 views

CVE-2026-40402

Use after free in Windows Hyper-V allows an unauthorized attacker to elevate privileges locally...

9.3CVSS5.8AI score0.00332EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2026/05/12 4:59 p.m.64 views

CVE-2026-40402 Windows Hyper-V Elevation of Privilege Vulnerability

...

9.3CVSS0.00332EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/12 4:59 p.m.9 views

CVE-2026-40402 Windows Hyper-V Elevation of Privilege Vulnerability

...

9.3CVSS5.8AI score0.00332EPSS
Exploits0References1
CVE
CVE
added 2026/05/12 4:59 p.m.91 views

CVE-2026-40402

The CVE-2026-40402 entry describes a use-after-free in Windows Hyper-V that enables local privilege escalation by an unauthenticated attacker. The vulnerability affects Hyper-V components and, per multiple connected sources, has been addressed by May 2026 security updates (e.g., KB5087420/KB50874...

9.3CVSS5.8AI score0.00332EPSS
Exploits0References1Affected Software2
Microsoft CVE
Microsoft CVE
added 2026/05/12 2:0 p.m.8 views

Windows Hyper-V Elevation of Privilege Vulnerability

Use after free in Windows Hyper-V allows an unauthorized attacker to elevate privileges locally...

9.3CVSS5.8AI score0.00332EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/05/12 3:29 a.m.7 views

SUSE CVE-2026-43475

In the Linux kernel, the following vulnerability has been resolved: scsi: storvsc: Fix scheduling while atomic on PREEMPTRT This resolves the follow splat and lock-up when running with PREEMPTRT enabled on Hyper-V: 415.140818 BUG: scheduling while atomic: stress-ng-iomix/1048/0x00000002 415.14082...

5.8AI score0.00114EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.11 views

Microsoft Hyper-V 资源管理错误漏洞

Microsoft Hyper-V is an application developed by Microsoft Corporation in the United States. It is a system management program that enables desktop virtualization. There is a resource management vulnerability in Microsoft Hyper-V. Attackers can exploit this vulnerability to gain elevated...

9.3CVSS6AI score0.00332EPSS
Exploits0References2
Rows per page
Query Builder