5612 matches found
CVE-2024-21305
Hypervisor-Protected Code Integrity HVCI Security Feature Bypass Vulnerability...
Security feature bypass
Hypervisor-Protected Code Integrity HVCI Security Feature Bypass Vulnerability...
CVE-2024-21305 Hypervisor-Protected Code Integrity (HVCI) Security Feature Bypass Vulnerability
...
CVE-2024-21305 Hypervisor-Protected Code Integrity (HVCI) Security Feature Bypass Vulnerability
...
CVE-2024-21305
CVE-2024-21305 is a Hypervisor-Protected Code Integrity (HVCI) security feature bypass affecting Windows; the CVE entry notes a local attack surface with high privileges required and no user interaction (per CVSS details). Connected Microsoft documentation confirms the vulnerability and lists it ...
AZL-42697 CVE-2023-6129 affecting package cloud-hypervisor-cvm for versions less than 38.0.72.2-1
Issue summary: The POLY1305 MAC message authentication code implementation contains a bug that might corrupt the internal state of applications running on PowerPC CPU based platforms if the CPU provides vector instructions. Impact summary: If an attacker can influence whether the POLY1305 MAC...
AZL-42754 CVE-2023-6129 affecting package cloud-hypervisor-cvm for versions less than 38.0.72.2-1
Issue summary: The POLY1305 MAC message authentication code implementation contains a bug that might corrupt the internal state of applications running on PowerPC CPU based platforms if the CPU provides vector instructions. Impact summary: If an attacker can influence whether the POLY1305 MAC...
Hypervisor-Protected Code Integrity (HVCI) Security Feature Bypass Vulnerability
...
PT-2024-1080 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to a security-feature bypass vulnerability in the Hypervisor-Protected Code Integrity HVCI feature of the Windows operating system. This vulnerability allows attackers ...
Microsoft Hyper-V 安全漏洞
Microsoft Hyper-V is an application from Microsoft Corporation USA. A system hypervisor virtualization technology that enables desktop virtualization. A remote code execution vulnerability exists in Microsoft Hyper-V, which can be exploited by an attacker to execute arbitrary code on a system...
Microsoft Hypervisor-Protected Code Integrity Security Vulnerability
Microsoft Hypervisor-Protected Code Integrity is a security feature of Windows from Microsoft Corporation USA that makes it difficult for malicious programs to hijack computers using low-level drivers. A security vulnerability exists in Microsoft Hypervisor-Protected Code Integrity. An attacker...
ALPINE-CVE-2023-34327
This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. AMD CPUs since 2014 have extensions to normal x86 debugging functionality. Xen supports guests using these extensions. Unfortunately there are errors in Xen's handling of...
DEBIAN-CVE-2023-34327
This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. AMD CPUs since 2014 have extensions to normal x86 debugging functionality. Xen supports guests using these extensions. Unfortunately there are errors in Xen's handling of...
CVE-2023-34325
This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. libfsimage contains parsing code for several filesystems, most of them based on grub-legacy code. libfsimage is used by pygrub to inspect guest disks. Pygrub runs as the...
UBUNTU-CVE-2023-34328
This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. AMD CPUs since 2014 have extensions to normal x86 debugging functionality. Xen supports guests using these extensions. Unfortunately there are errors in Xen's handling of...
AZL-32311 CVE-2023-50711 affecting package cloud-hypervisor for versions less than 32.0-3
vmm-sys-util is a collection of modules that provides helpers and utilities used by multiple rust-vmm components. Starting in version 0.5.0 and prior to version 0.12.0, an issue in the FamStructWrapper::deserialize implementation provided by the crate for vmmsysutil::fam::FamStructWrapper can lea...
CVE-2023-33036
Permanent DOS in Hypervisor while untrusted VM without PSCI support makes a PSCI call...
Code injection
Permanent DOS in Hypervisor while untrusted VM without PSCI support makes a PSCI call...
CVE-2023-33036 NULL Pointer Dereference in Hypervisor
Permanent DOS in Hypervisor while untrusted VM without PSCI support makes a PSCI call...
CVE-2023-33036
The CVE-2023-33036 issue affects Qualcomm closed-source components in the hypervisor. It is described as a permanent DoS caused by a NULL pointer dereference when an untrusted VM lacking PSCI support issues a PSCI call, leading to hypervisor disruption (availability impact High). Reported in Qual...