Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

5593 matches found

CVE
CVEadded 2026/02/19 3:57 p.m.12 views

CVE-2026-24834

CVE-2026-24834 affects Kata Containers before 3.27.0. A flaw in the interaction with Cloud Hypervisor allows a container user to modify the Guest micro VM’s filesystem, potentially achieving arbitrary code execution as root inside the VM. The host and other containers/VMs on the same host are not...

9.3CVSS6.3AI score0.00008EPSS
Exploits1References3Affected Software1
OSV
OSVadded 2026/02/19 3:57 p.m.5 views

CVE-2026-24834 Kata Container to Guest micro VM privilege escalation

Kata Containers is an open source project focusing on a standard implementation of lightweight Virtual Machines VMs that perform like containers. In versions prior to 3.27.0, an issue in Kata with Cloud Hypervisor allows a user of the container to modify the file system used by the Guest micro VM...

9.3CVSS6.3AI score0.00008EPSS
Exploits1References5
Vulnrichment
Vulnrichmentadded 2026/02/19 3:57 p.m.4 views

CVE-2026-24834 Kata Container to Guest micro VM privilege escalation

Kata Containers is an open source project focusing on a standard implementation of lightweight Virtual Machines VMs that perform like containers. In versions prior to 3.27.0, an issue in Kata with Cloud Hypervisor allows a user of the container to modify the file system used by the Guest micro VM...

9.3CVSS6.3AI score0.00008EPSS
Exploits1References3
Cvelist
Cvelistadded 2026/02/19 3:57 p.m.21 views

CVE-2026-24834 Kata Container to Guest micro VM privilege escalation

Kata Containers is an open source project focusing on a standard implementation of lightweight Virtual Machines VMs that perform like containers. In versions prior to 3.27.0, an issue in Kata with Cloud Hypervisor allows a user of the container to modify the file system used by the Guest micro VM...

9.3CVSS0.00008EPSS
Exploits1References3
OSV
OSVadded 2026/02/19 3:25 p.m.4 views

GHSA-WWJ6-VGHV-5P64 Kata Container to Guest micro VM privilege escalation

Summary An issue in Kata with Cloud Hypervisor allows a user of the container to modify the file system used by the Guest micro VM ultimately achieving arbitrary code execution as root in said VM. The current understinding is this doesn’t impact the security of the Host or of other containers / V...

5.2CVSS6.2AI score0.00008EPSS
Exploits1References5
Github Security Blog
Github Security Blogadded 2026/02/19 3:25 p.m.7 views

Kata Container to Guest micro VM privilege escalation

Summary An issue in Kata with Cloud Hypervisor allows a user of the container to modify the file system used by the Guest micro VM ultimately achieving arbitrary code execution as root in said VM. The current understinding is this doesn’t impact the security of the Host or of other containers / V...

9.3CVSS6.2AI score0.00008EPSS
Exploits1References5Affected Software1
OSV
OSVadded 2026/02/19 9:51 a.m.2 views

USN-8052-1 linux-lowlatency vulnerabilities

It was discovered that improper initialization of CPU cache memory could allow a local attacker with hypervisor access to overwrite SEV-SNP guest memory resulting in loss of data integrity. CVE-2024-36331 Oleksii Oleksenko, Cedric Fournet, Jana Hofmann, Boris Köpf, Stavros Volos, and Flavien Solt...

9.8CVSS6.9AI score0.00452EPSS
Exploits8References754
Ubuntu
Ubuntuadded 2026/02/19 9:26 a.m.2 views

USN-8031-3: Linux kernel vulnerabilities

It was discovered that improper initialization of CPU cache memory could allow a local attacker with hypervisor access to overwrite SEV-SNP guest memory resulting in loss of data integrity. CVE-2024-36331 Oleksii Oleksenko, Cedric Fournet, Jana Hofmann, Boris Köpf, Stavros Volos, and Flavien Solt...

9.8CVSS7.1AI score0.00452EPSS
Exploits8
Ubuntu
Ubuntuadded 2026/02/19 9:1 a.m.9 views

USN-8028-6: Linux kernel (HWE) vulnerabilities

It was discovered that improper initialization of CPU cache memory could allow a local attacker with hypervisor access to overwrite SEV-SNP guest memory resulting in loss of data integrity. CVE-2024-36331 Oleksii Oleksenko, Cedric Fournet, Jana Hofmann, Boris Köpf, Stavros Volos, and Flavien Solt...

9.8CVSS7.6AI score0.00452EPSS
Exploits8
Positive Technologies
Positive Technologiesadded 2026/02/19 12:0 a.m.7 views

PT-2026-20867

Name of the Vulnerable Software and Affected Versions Kata Containers versions prior to 3.27.0 Description Kata Containers is an open source project focused on providing a standard implementation of lightweight Virtual Machines VMs that function like containers. A flaw in Kata with Cloud Hypervis...

9.9CVSS6.5AI score0.00733EPSS
Exploits44References122
Positive Technologies
Positive Technologiesadded 2026/02/19 12:0 a.m.3 views

PT-2026-20875

Summary An issue in Kata with Cloud Hypervisor allows a user of the container to modify the file system used by the Guest micro VM ultimately achieving arbitrary code execution as root in said VM. The current understinding is this doesn’t impact the security of the Host or of other containers / V...

5.2CVSS6.2AI score
Exploits0References5
CNNVD
CNNVDadded 2026/02/19 12:0 a.m.4 views

Kata Containers 安全漏洞

Kata Containers is an open-source, lightweight virtual infrastructure building tool developed by the Kata Containers community. Versions of Kata Containers prior to 3.27.0 contained a security vulnerability. This vulnerability stemmed from issues during interactions with the Cloud Hypervisor, whi...

9.3CVSS6AI score0.00008EPSS
Exploits1References3
Ubuntu
Ubuntuadded 2026/02/18 10:6 a.m.5 views

USN-8031-2: Linux kernel (GCP FIPS) vulnerabilities

It was discovered that improper initialization of CPU cache memory could allow a local attacker with hypervisor access to overwrite SEV-SNP guest memory resulting in loss of data integrity. CVE-2024-36331 Oleksii Oleksenko, Cedric Fournet, Jana Hofmann, Boris Köpf, Stavros Volos, and Flavien Solt...

9.8CVSS7.8AI score0.00452EPSS
Exploits8
OSV
OSVadded 2026/02/18 10:6 a.m.4 views

USN-8031-2 linux-gcp-fips vulnerabilities

It was discovered that improper initialization of CPU cache memory could allow a local attacker with hypervisor access to overwrite SEV-SNP guest memory resulting in loss of data integrity. CVE-2024-36331 Oleksii Oleksenko, Cedric Fournet, Jana Hofmann, Boris Köpf, Stavros Volos, and Flavien Solt...

9.8CVSS6.8AI score0.00452EPSS
Exploits8References753
Ubuntu
Ubuntuadded 2026/02/17 2:41 p.m.2 views

USN-8028-4: Linux kernel (FIPS) vulnerabilities

It was discovered that improper initialization of CPU cache memory could allow a local attacker with hypervisor access to overwrite SEV-SNP guest memory resulting in loss of data integrity. CVE-2024-36331 Oleksii Oleksenko, Cedric Fournet, Jana Hofmann, Boris Köpf, Stavros Volos, and Flavien Solt...

9.8CVSS8.7AI score0.00452EPSS
Exploits8
RedhatCVE
RedhatCVEadded 2026/02/16 7:30 p.m.5 views

CVE-2025-29948

Improper access control in AMD Secure Encrypted Virtualization SEV firmware could allow a malicious hypervisor to bypass RMP protections, potentially resulting in a loss of SEV-SNP guest memory integrity...

5.9CVSS5.5AI score0.00018EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/02/16 7:30 p.m.4 views

CVE-2025-48517

Insufficient Granularity of Access Control in SEV firmware could allow a privileged user with a malicious hypervisor to create a SEV-ES guest with an ASID in the range meant for SEV-SNP guests potentially resulting in a partial loss of confidentiality...

4.6CVSS5.5AI score0.00018EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/02/16 7:30 p.m.4 views

CVE-2025-0031

A use after free in the SEV firmware could allow a malicous hypervisor to activate a migrated guest with the SINGLESOCKET policy on a different socket than the migration agent potentially resulting in loss of integrity...

4.6CVSS5.5AI score0.0002EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/02/16 7:29 p.m.4 views

CVE-2024-21953

Improper input validation in IOMMU could allow a malicious hypervisor to reconfigure IOMMU registers resulting in loss of guest data integrity...

5.9CVSS5.5AI score0.00039EPSS
Exploits0References1
Fedora
Fedoraadded 2026/02/15 1:29 a.m.5 views

[SECURITY] Fedora 42 Update: xen-4.19.4-2.fc42

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...

8.8CVSS5.5AI score0.00033EPSS
Exploits0
Rows per page
Query Builder