CVE-2025-38351 KVM: x86/hyper-v: Skip non-canonical addresses during PV TLB flush

In the Linux kernel, the following vulnerability has been resolved: KVM: x86/hyper-v: Skip non-canonical addresses during PV TLB flush In KVM guests with Hyper-V hypercalls enabled, the hypercalls HVCALLFLUSHVIRTUALADDRESSLIST and HVCALLFLUSHVIRTUALADDRESSLISTEX allow a guest to request...

Hyper-Volumetric DDoS Attacks Reach Record 7.3 Tbps, Targeting Key Global Sectors

Cloudflare on Tuesday said it mitigated 7.3 million distributed denial-of-service DDoS attacks in the second quarter of 2025, a significant drop from 20.5 million DDoS attacks it fended off the previous quarter. "Overall, in Q2 2025, hyper-volumetric DDoS attacks skyrocketed," Omer Yoachimik and...

The vulnerability of the Windows Hyper-V hardware virtualization system allows attackers to disclose protected information.

The vulnerability of the Windows Hyper-V hardware virtualization system is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a remote attacker to disclose sensitive information that is protected by the system’s security measures...

CVE-2025-47999

Missing synchronization in Windows Hyper-V allows an authorized attacker to deny service over an adjacent network...

CVE-2025-48002

Integer overflow or wraparound in Windows Hyper-V allows an authorized attacker to disclose information over an adjacent network...

CVE-2025-48822

Out-of-bounds read in Windows Hyper-V allows an unauthorized attacker to execute code locally...

CVE-2025-48822

Out-of-bounds read in Windows Hyper-V allows an unauthorized attacker to execute code locally...

CVE-2025-48822

Out-of-bounds read in Windows Hyper-V allows an unauthorized attacker to execute code locally...

CVE-2025-48002

Integer overflow or wraparound in Windows Hyper-V allows an authorized attacker to disclose information over an adjacent network...

CVE-2025-48002

Integer overflow or wraparound in Windows Hyper-V allows an authorized attacker to disclose information over an adjacent network...

CVE-2025-47999

Missing synchronization in Windows Hyper-V allows an authorized attacker to deny service over an adjacent network...

CVE-2025-47999

Missing synchronization in Windows Hyper-V allows an authorized attacker to deny service over an adjacent network...

CVE-2025-47999 Windows Hyper-V Denial of Service Vulnerability

...

CVE-2025-47999 Windows Hyper-V Denial of Service Vulnerability

...

CVE-2025-47999

CVE-2025-47999 : In Windows Hyper-V, missing synchronization allows an authorized attacker to cause a Denial-of-Service over an adjacent network. The CVSS v3.1 base score is 6.8 (AV:A/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H). Connected documents confirm Hyper-V is affected and describe DoS potential; expl...

CVE-2025-48822 Windows Hyper-V Discrete Device Assignment (DDA) Remote Code Execution Vulnerability

...

CVE-2025-48822 Windows Hyper-V Discrete Device Assignment (DDA) Remote Code Execution Vulnerability

...

CVE-2025-48822

CVE-2025-48822 is an out-of-bounds read vulnerability in Windows Hyper-V that could enable local code execution. The connected NCSC entry explicitly lists the impact as Execution of arbitrary code on Windows Hyper‑V, with CVSS base score 8.6 (LOCAL, HIGH). The documents do not provide additional ...

CVE-2025-48002

CVE-2025-48002 (Windows Hyper-V) describes an information-disclosure flaw caused by an integer overflow/wraparound in Hyper-V. An authenticated attacker on an adjacent network can potentially disclose data from the host. Public exploit presence is noted in referenced materials. Remediation is via...

CVE-2025-48002 Windows Hyper-V Information Disclosure Vulnerability

...