DEBIAN-CVE-2022-23034

A PV guest could DoS Xen while unmapping a grant To address XSA-380, reference counting was introduced for grant mappings for the case where a PV guest would have the IOMMU enabled. PV guests can request two forms of mappings. When both are in use for any individual mapping, unmapping of such a...

Design/Logic Flaw

A PV guest could DoS Xen while unmapping a grant To address XSA-380, reference counting was introduced for grant mappings for the case where a PV guest would have the IOMMU enabled. PV guests can request two forms of mappings. When both are in use for any individual mapping, unmapping of such a...

UBUNTU-CVE-2022-23034

A PV guest could DoS Xen while unmapping a grant To address XSA-380, reference counting was introduced for grant mappings for the case where a PV guest would have the IOMMU enabled. PV guests can request two forms of mappings. When both are in use for any individual mapping, unmapping of such a...

CVE-2022-23034

A PV guest could DoS Xen while unmapping a grant To address XSA-380, reference counting was introduced for grant mappings for the case where a PV guest would have the IOMMU enabled. PV guests can request two forms of mappings. When both are in use for any individual mapping, unmapping of such a...

CVE-2022-23034

CVE-2022-23034 affects the Xen hypervisor. A PV guest could cause a Denial of Service by unmapping a grant when IOMMU is enabled; a reference count mis-decrement could trigger a hypervisor bug check (underflow). The issue is one of several Xen vulnerabilities reported across multiple distros (Deb...

CVE-2022-23034

A PV guest could DoS Xen while unmapping a grant To address XSA-380, reference counting was introduced for grant mappings for the case where a PV guest would have the IOMMU enabled. PV guests can request two forms of mappings. When both are in use for any individual mapping, unmapping of such a...

Xen 数字错误漏洞

Xen is an open source virtual machine monitor product from the University of Cambridge, UK. The product enables different and incompatible operating systems to run on the same computer and supports runtime migration to ensure uptime and avoid downtime. A numeric error vulnerability exists in xen,...

Oracle VirtualBox TFTP Server Directory Traversal Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of Oracle VirtualBox. An attacker must first obtain the ability to execute low-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within t...

The vulnerability of Xen cross-platform hypervisors, related to information disclosure, allows attackers to gain access to confidential data.

The vulnerability of the cross-platform Xen hypervisor is related to the disclosure of information. Exploiting this vulnerability can allow a malicious actor to gain access to confidential data...

The vulnerability of Xen cross-platform hypervisors relates to insecure management of privileges, allowing attackers to access confidential data and cause service failures.

The vulnerability of the cross-platform Xen hypervisor is related to insecure management of privileges. Exploiting this vulnerability can allow attackers to access confidential data and also cause service failures...

The vulnerability of Xen hypervisors on x86 Intel systems, related to the lack of a mechanism for managing privileges, allows attackers to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of Xen hypervisors on x86 Intel systems is related to the lack of a mechanism for managing privileges. Exploiting this vulnerability can allow an attacker to access confidential data, compromise its integrity, and even cause service failures...

The vulnerability of Xen hypervisors that run on multiple platforms, related to deficiencies in access control to ports, allows attackers to gain access to confidential data.

The vulnerability of the cross-platform hypervisor Xen is related to deficiencies in access control for ports. Exploiting this vulnerability can allow an attacker to gain access to confidential data...

OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has evaluated the severity of this issue to be in the Critical severity range with a maximum CVSSv3 base score of 9.8.

...

F5 Networks BIG-IP : BIG-IP VE vulnerability (K53442005)

The version of F5 Networks BIG-IP installed on the remote host is prior to 13.1.5 / 14.1.4.5 / 15.1.4.1 / 16.1.2 / 17.0.0. It is, therefore, affected by a vulnerability as referenced in the K53442005 advisory. - On version 16.1.x before 16.1.2, 15.1.x before 15.1.4.1, 14.1.x before 14.1.4.5, and...

The vulnerability of the cross-platform hypervisor Xen, related to the disclosure of information through incompatibilities, allows attackers to gain access to confidential data.

The vulnerability of the cross-platform hypervisor Xen is related to the exposure of information through incompatibility. Exploiting this vulnerability can allow an attacker to gain access to confidential data...

IBM PowerVM Hypervisor has an unspecified vulnerability (CNVD-2022-03941)

IBM PowerVM Hypervisor is an application from Universal Business Machines IBM, Inc. provides a secure and scalable virtualization environment for applications that are built on the advanced RAS capabilities and leading performance of the Power Systems platform.A security vulnerability exists in I...

CVE-2021-30285

Improper validation of memory region in Hypervisor can lead to incorrect region mapping in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking...

Input validation

Improper validation of memory region in Hypervisor can lead to incorrect region mapping in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking...

CVE-2021-30285

CVE-2021-30285: Qualcomm closed-source Hypervisor memory-region validation flaw leads to incorrect region mapping. CNNVD details a wide set of affected Qualcomm products (AR8031/AR8035, CSRA66xx, FSM1005x/56x, MDM9150, qca4xxx/6xxx series, SAx/SDx families, etc.) with the root cause being imprope...

CVE-2021-30285

Improper validation of memory region in Hypervisor can lead to incorrect region mapping in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking...