Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

5613 matches found

OSV
OSVadded 2021/11/24 2:15 a.m.28 views

CVE-2021-28709

issues with partially successful P2M updates on x86 This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. x86 HVM and PVH guests may be started in populate-on-demand PoD mode, to provide a way for them to later easily have...

7.8CVSS7.4AI score
Exploits0References5
AlpineLinux
AlpineLinuxadded 2021/11/24 2:15 a.m.30 views

CVE-2021-28709

issues with partially successful P2M updates on x86 This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. x86 HVM and PVH guests may be started in populate-on-demand PoD mode, to provide a way for them to later easily have...

7.8CVSS1.9AI score0.00338EPSS
Exploits0
OSV
OSVadded 2021/11/24 1:15 a.m.21 views

CVE-2021-28708

PoD operations on misaligned GFNs This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. x86 HVM and PVH guests may be started in populate-on-demand PoD mode, to provide a way for them to later easily have more memory assigne...

8.8CVSS8.7AI score
Exploits0References5
UbuntuCve
UbuntuCveadded 2021/11/24 12:0 a.m.23 views

CVE-2021-28707

PoD operations on misaligned GFNs This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. x86 HVM and PVH guests may be started in populate-on-demand PoD mode, to provide a way for them to later easily have more memory assigne...

8.8CVSS7.2AI score0.00348EPSS
Exploits0References2
UbuntuCve
UbuntuCveadded 2021/11/24 12:0 a.m.24 views

CVE-2021-28706

guests may exceed their designated memory limit When a guest is permitted to have close to 16TiB of memory, it may be able to issue hypercalls to increase its memory allocation beyond the administrator established limit. This is a result of a calculation done with 32-bit precision, which may...

8.6CVSS7.1AI score0.0206EPSS
Exploits0References2
UbuntuCve
UbuntuCveadded 2021/11/24 12:0 a.m.27 views

CVE-2021-28709

issues with partially successful P2M updates on x86 This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. x86 HVM and PVH guests may be started in populate-on-demand PoD mode, to provide a way for them to later easily have...

7.8CVSS7AI score0.00338EPSS
Exploits0References2
Cvelist
Cvelistadded 2021/11/24 12:0 a.m.38 views

CVE-2021-28705

issues with partially successful P2M updates on x86 This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. x86 HVM and PVH guests may be started in populate-on-demand PoD mode, to provide a way for them to later easily have...

8.2AI score0.00333EPSS
Exploits0References5
UbuntuCve
UbuntuCveadded 2021/11/24 12:0 a.m.23 views

CVE-2021-28708

PoD operations on misaligned GFNs This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. x86 HVM and PVH guests may be started in populate-on-demand PoD mode, to provide a way for them to later easily have more memory assigne...

8.8CVSS7.2AI score0.00328EPSS
Exploits0References2
UbuntuCve
UbuntuCveadded 2021/11/24 12:0 a.m.27 views

CVE-2021-28705

issues with partially successful P2M updates on x86 This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. x86 HVM and PVH guests may be started in populate-on-demand PoD mode, to provide a way for them to later easily have...

7.8CVSS7AI score0.00333EPSS
Exploits0References2
Debian CVE
Debian CVEadded 2021/11/24 12:0 a.m.26 views

CVE-2021-28707

PoD operations on misaligned GFNs This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. x86 HVM and PVH guests may be started in populate-on-demand PoD mode, to provide a way for them to later easily have more memory assigne...

8.8CVSS0.4AI score0.00348EPSS
Exploits0
The Hacker News
The Hacker Newsadded 2021/11/23 12:6 p.m.48 views

Researchers Detail Privilege Escalation Bugs Reported in Oracle VirtualBox

A now-patched vulnerability affecting Oracle VM VirtualBox could be potentially exploited by an adversary to compromise the hypervisor and cause a denial-of-service DoS condition. "Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM...

7.5CVSS7.6AI score0.00791EPSS
Exploits0
Xen Project
Xen Projectadded 2021/11/23 12:0 p.m.42 views

issues with partially successful P2M updates on x86

ISSUE DESCRIPTION x86 HVM and PVH guests may be started in populate-on-demand PoD mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specifie...

7.8CVSS8.1AI score0.00338EPSS
Exploits0Affected Software1
CNNVD
CNNVDadded 2021/11/23 12:0 a.m.3 views

Xen 输入验证错误漏洞

Xen is an open source virtual machine monitor product from the University of Cambridge, UK. The product enables different and incompatible operating systems to run on the same computer and supports migration at runtime to ensure uptime and avoid downtime. An input validation error vulnerability...

7.8CVSS7.3AI score0.00333EPSS
Exploits0References17
CNNVD
CNNVDadded 2021/11/23 12:0 a.m.3 views

Xen 安全漏洞

Xen is an open source virtual machine monitor product from the University of Cambridge, UK. The product enables different and incompatible operating systems to run on the same computer and supports runtime migration to ensure uptime and avoid downtime. There is a security vulnerability in Xen tha...

7CVSS6.9AI score0.00305EPSS
Exploits0References6
CNNVD
CNNVDadded 2021/11/23 12:0 a.m.3 views

Xen 命令注入漏洞

Xen is an open source virtual machine monitor product from the University of Cambridge, UK. The product enables different and incompatible operating systems to run on the same computer and supports migration at runtime to ensure uptime and avoid downtime. A command injection vulnerability exists ...

8.8CVSS7.7AI score0.00328EPSS
Exploits0References15
CNNVD
CNNVDadded 2021/11/23 12:0 a.m.4 views

Xen 命令注入漏洞

Xen is an open source virtual machine monitor product from the University of Cambridge, UK. The product enables different and incompatible operating systems to run on the same computer and supports migration at runtime to ensure uptime and avoid downtime. A command injection vulnerability exists ...

8.8CVSS7.7AI score0.00348EPSS
Exploits0References15
CNNVD
CNNVDadded 2021/11/23 12:0 a.m.4 views

Xen 命令注入漏洞

Xen is an open source virtual machine monitor product from the University of Cambridge, UK. The product enables different and incompatible operating systems to run on the same computer and supports migration at runtime to ensure uptime and avoid downtime. A command injection vulnerability exists ...

8.8CVSS7.7AI score0.00328EPSS
Exploits0References16
OSV
OSVadded 2021/11/21 3:15 p.m.1 views

ALPINE-CVE-2021-28710

certain VT-d IOMMUs may not work in shared page table mode For efficiency reasons, address translation control structures page tables may and, on suitable hardware, by default will be shared between CPUs, for second-level translation EPT, and IOMMUs. These page tables are presently set up to alwa...

8.8CVSS6.7AI score0.00276EPSS
Exploits0References1
UbuntuCve
UbuntuCveadded 2021/11/21 3:15 p.m.23 views

CVE-2021-28710

certain VT-d IOMMUs may not work in shared page table mode For efficiency reasons, address translation control structures page tables may and, on suitable hardware, by default will be shared between CPUs, for second-level translation EPT, and IOMMUs. These page tables are presently set up to alwa...

8.8CVSS7.1AI score0.00276EPSS
Exploits0References4
Xen Project
Xen Projectadded 2021/11/19 2:10 p.m.49 views

certain VT-d IOMMUs may not work in shared page table mode

ISSUE DESCRIPTION For efficiency reasons, address translation control structures page tables may and, on suitable hardware, by default will be shared between CPUs, for second-level translation EPT, and IOMMUs. These page tables are presently set up to always be 4 levels deep. However, an IOMMU ma...

8.8CVSS8.4AI score0.00276EPSS
Exploits0
Rows per page
Query Builder