CVE-2022-32295

On Ampere Altra and AltraMax devices before SRP 1.09, the Altra reference design of UEFI accesses allows insecure access to SPI-NOR by the OS/hypervisor component...

PT-2022-3488 · Xen +6 · Xen +6

Name of the Vulnerable Software and Affected Versions: Xen affected versions not specified Description: The issue is related to a disclosure of information in the Xen hypervisor Linux kernel. It may allow a remote attacker to gain unauthorized access to protected information. Recommendations: At...

PT-2022-3491 · Linux +7 · Linux Kernel +7

Name of the Vulnerable Software and Affected Versions: Xen hypervisor affected versions not specified Linux kernel affected versions not specified Description: The issue is related to a disclosure of information in the Xen hypervisor and Linux kernel. It may allow a remote attacker to gain...

CVE-2022-32295

On Ampere Altra and AltraMax devices before SRP 1.09, the Altra reference design of UEFI accesses allows insecure access to SPI-NOR by the OS/hypervisor component...

Parallels Desktop ACPI Out-Of-Bounds Read Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the ACPI...

The vulnerability in the implementation of the acrn_dev_ioctl() function of the ACRN hypervisor service module in Linux kernels allows a attacker to disclose sensitive information or cause service failures.

The vulnerability of the acrndevioctl function implementation in the ACRN HSM service module of Linux operating systems is related to memory release errors. Exploiting this vulnerability can allow an attacker to disclose sensitive information or cause service failures...

GSD-2022-1002605 xen: unexport __init-annotated xen_xlate_map_ballooned_pages()

xen: unexport init-annotated xenxlatemapballoonedpages This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.18.4 by commit...

Citrix Releases Security Updates for Hypervisor

Citrix has released security updates to address vulnerabilities that could affect Hypervisor. An attacker could exploit one of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review Citrix Security Update CTX460064 and apply the necessary...

Citrix Hypervisor Security Update

A security issue has been identified in Citrix Hypervisor 7.1 LTSR CU2 that may allow privileged code in a PV guest VM to compromise the host. Citrix believes that there would be significant complexity in performing this attack in Citrix Hypervisor. The issue has the following CVE identifier:...

[SECURITY] Fedora 36 Update: xen-4.16.1-2.fc36

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...

[SECURITY] Fedora 36 Update: qemu-6.2.0-12.fc36

qemu is an open source virtualizer that provides hardware emulation for the KVM hypervisor. qemu acts as a virtual machine monitor together with the KVM kernel modules, and emulates the hardware for a full system such as a PC and its associated peripherals...

Fedora: Security Advisory for xen (FEDORA-2022-0142d562ca)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

The vulnerability of the Windows Hyper-V hardware virtualization system allows a perpetrator to gain unauthorized access to protected information or cause service failures.

The vulnerability of the Windows Hyper-V hardware virtualization system is related to errors in information processing. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information or cause service failures...

The vulnerability of the Windows Hyper-V hardware virtualization system allows a perpetrator to execute arbitrary code.

The vulnerability of the Windows Hyper-V hardware virtualization system in Windows operating systems is related to synchronization errors when using shared resources „Race Conditions“. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

CVE-2022-30163

Windows Hyper-V Remote Code Execution Vulnerability...

CVE-2021-35101

Improper handling of writes to virtual GICR control can lead to assertion failure in the hypervisor in Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile...

CVE-2021-35090

Possible hypervisor memory corruption due to TOC TOU race condition when updating address mappings in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile...

Race condition

Possible hypervisor memory corruption due to TOC TOU race condition when updating address mappings in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile...

Input validation

Improper handling of writes to virtual GICR control can lead to assertion failure in the hypervisor in Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile...

CVE-2021-35090

Possible hypervisor memory corruption due to TOC TOU race condition when updating address mappings in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile...