3686 matches found
CVE-2026-33414
A flaw was found in Podman, a tool for managing containers. This vulnerability, located in the HyperV machine backend, allows for command injection. An attacker who can manipulate the virtual machine VM image path can inject and execute arbitrary PowerShell commands. This could lead to unauthoriz...
CVE-2026-33414
Podman is a tool for managing OCI containers and pods. Versions 4.8.0 through 5.8.1 contain a command injection vulnerability in the HyperV machine backend in pkg/machine/hyperv/stubber.go, where the VM image path is inserted into a PowerShell double-quoted string without sanitization, allowing $...
CVE-2026-33414 PowerShell Command Injection in Podman HyperV Machine
Podman is a tool for managing OCI containers and pods. Versions 4.8.0 through 5.8.1 contain a command injection vulnerability in the HyperV machine backend in pkg/machine/hyperv/stubber.go, where the VM image path is inserted into a PowerShell double-quoted string without sanitization, allowing $...
CVE-2026-33414
Podman is a tool for managing OCI containers and pods. Versions 4.8.0 through 5.8.1 contain a command injection vulnerability in the HyperV machine backend in pkg/machine/hyperv/stubber.go, where the VM image path is inserted into a PowerShell double-quoted string without sanitization, allowing $...
EUVD-2026-22380
Heap-based buffer overflow in Windows Hyper-V allows an unauthorized attacker to execute code locally...
CVE-2026-32149
Improper input validation in Windows Hyper-V allows an authorized attacker to execute code locally...
CVE-2026-26156
Heap-based buffer overflow in Windows Hyper-V allows an unauthorized attacker to execute code locally...
CVE-2026-32149
CVE-2026-32149 is a Windows Hyper-V remote code execution vulnerability. The issue involves a local attack vector (AV: Local) with low attack complexity (AC: Low) and privileges required (PR: Low) that requires user interaction (UI: Required). Impact is high on confidentiality, integrity, and ava...
CVE-2026-32149 Windows Hyper-V Remote Code Execution Vulnerability
...
CVE-2026-32149 Windows Hyper-V Remote Code Execution Vulnerability
...
CVE-2026-26156 Windows Hyper-V Remote Code Execution Vulnerability
...
CVE-2026-26156 Windows Hyper-V Remote Code Execution Vulnerability
...
Windows Hyper-V Remote Code Execution Vulnerability
Improper input validation in Windows Hyper-V allows an authorized attacker to execute code locally...
Windows Hyper-V Remote Code Execution Vulnerability
Heap-based buffer overflow in Windows Hyper-V allows an unauthorized attacker to execute code locally...
PT-2026-32736
CVE-2026-26156 Heap-based buffer overflow in Windows Hyper-V allows an unauthorized attacker to execute code locally. https://t.co/WXiQEpBjLe...
Podman 操作系统命令注入漏洞
Podman is an open-source engine developed by Podman for developing, managing, and running OCI containers on Linux systems. Versions of Podman 4.8.0 to 5.8.1 contain a vulnerability related to operating system command injection. This vulnerability stems from command injection issues in the HyperV...
Microsoft Hyper-V 数字错误漏洞
Microsoft Hyper-V is an application developed by Microsoft Corporation in the United States. It is a system management program that enables desktop virtualization. Microsoft Hyper-V has a numerical error vulnerability. Attackers can exploit this vulnerability to execute code. The following produc...
PT-2026-32819
CVE-2026-32149 Improper input validation in Windows Hyper-V allows an authorized attacker to execute code locally. https://t.co/jAvCgQ0s60...
Microsoft Hyper-V 缓冲区错误漏洞
Microsoft Hyper-V is an application developed by Microsoft Corporation in the United States. It is a system management program that enables desktop virtualization. Microsoft Hyper-V has a buffer error vulnerability. Attackers can exploit this vulnerability to execute code. The following products...
USN-8161-1: QEMU vulnerabilities
It was discovered that the LSI53C895A SCSI Host Bus Adapter implementation of QEMU incorrectly handled memory. An attacker inside the guest could possibly use this issue to cause QEMU to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2024-6519 It was discovered...