CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2025/05/02 4:15 p.m.•6 views

CVE-2023-53108

5.5CVSS0.00012EPSS

Exploits0References8

ATTACKERKB•added 2025/05/02 4:15 p.m.•3 views

CVE-2023-53108

5.5CVSS6.1AI score0.00012EPSS

Exploits0References9Affected Software1

Cvelist•added 2025/05/02 3:55 p.m.•8 views

CVE-2023-53108 net/iucv: Fix size of interrupt data

0.00012EPSS

Exploits0References8

BDU FSTEC•added 2025/04/30 12:0 a.m.•1 views

The vulnerability of Xen hypervisors, related to the mutual blocking of execution flows, allows a malicious actor to cause a service failure.

The vulnerability of Xen hypervisors is related to the mutual blocking of execution threads. Exploiting this vulnerability can allow an attacker to cause a service failure...

4.7CVSS6.5AI score0.00233EPSS

Exploits0References8Affected Software6

BDU FSTEC•added 2025/04/30 12:0 a.m.•1 views

The vulnerability of Xen hypervisors relates to the incorrect sequence of processor instructions, allowing attackers to gain unauthorized access to protected information.

The vulnerability of Xen hypervisors is related to an incorrect sequence of processor instructions, due to the absence of the ENDBR instruction and a prologue/eepilog for CFI schemes based on hash. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access ...

5.7CVSS6.7AI score0.00012EPSS

Exploits0References12Affected Software7

Amazon•added 2025/04/29 12:0 a.m.•3 views

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix use-after-free of encap entry in neigh update handler CVE-2021-47247 In the Linux kernel, the following vulnerability has been resolved: i2c: dev: check return value when calling devsetname...

7.8CVSS6.8AI score0.00279EPSS

Citrix•added 2025/04/24 12:0 a.m.•7 views

Citrix DaaS - Hosting Connection "Username and Password Not Recognized" Error

When attempting to establish or test a hosting connection within your virtualization environment, the system reports an authentication failure with the following error message: "The username and password combination supplied for this connection was not recognized." This error indicates that the...

7.5AI score

Schneier on Security•added 2025/04/23 4:2 p.m.•12 views

Regulating AI Behavior with a Hypervisor

Interesting research: "Guillotine: Hypervisors for Isolating Malicious AIs." Abstract :As AI models become more embedded in critical sectors like finance, healthcare, and the military, their inscrutable behavior poses ever-greater risks to society. To mitigate this risk, we propose Guillotine, a...

7.2AI score

Packet Storm News•added 2025/04/21 12:0 a.m.•1 views

Guillotine: Hypervisors for Isolating Malicious AIs

As AI models become more embedded in critical sectors like finance, healthcare, and the military, their inscrutable behavior poses ever-greater risks to society. To mitigate this risk, we propose Guillotine, a hypervisor architecture for sandboxing powerful AI models -- models that, by accident o...

6.9AI score

RedHat Linux•added 2025/04/17 12:20 a.m.•5 views

dpdk: Denial Of Service from malicious guest on hypervisors using DPDK Vhost library

An out-of-bounds read vulnerability was found in DPDK's Vhost library checksum offload feature. This issue enables an untrusted or compromised guest to crash the hypervisor's vSwitch by forging Virtio descriptors to cause out-of-bounds reads. This flaw allows an attacker with a malicious VM using...

RedHat Linux•added 2025/04/17 12:13 a.m.•2 views

dpdk: Denial Of Service from malicious guest on hypervisors using DPDK Vhost library

RedHat Linux•added 2025/04/17 12:13 a.m.•4 views

dpdk: Denial Of Service from malicious guest on hypervisors using DPDK Vhost library

RedHat Linux•added 2025/04/17 12:7 a.m.•2 views

dpdk: Denial Of Service from malicious guest on hypervisors using DPDK Vhost library

RedHat Linux•added 2025/04/15 9:57 a.m.•4 views

kernel: xen: Xen hypercall page unsafe against speculative attacks (Xen Security Advisory 466)

In the Linux kernel, the following vulnerability has been resolved: x86/xen: don't do PV iret hypercall through hypercall page Instead of jumping to the Xen hypercall page for doing the iret hypercall, directly code the required sequence in xen-asm.S. This is done in preparation of no longer usin...

5.5CVSS6.8AI score0.00012EPSS

Cvelist•added 2025/04/08 8:18 a.m.•23 views

CVE-2025-22012 Revert "arm64: dts: qcom: sdm845: Affirm IDR0.CCTW on apps_smmu"

In the Linux kernel, the following vulnerability has been resolved: Revert "arm64: dts: qcom: sdm845: Affirm IDR0.CCTW on appssmmu" There are reports that the pagetable walker cache coherency is not a given across the spectrum of SDM845/850 devices, leading to lock-ups and resets. It works fine o...

0.00086EPSS

Exploits0References2

Citrix•added 2025/04/07 12:0 a.m.•21 views

Hotfix XS82ECU1085 - For Citrix Hypervisor 8.2 Cumulative Update 1

Who Should Install This Hotfix? This is a hotfix for customers running Citrix Hypervisor 8.2 Cumulative Update 1 and is only available to customers on theCustomer Success Servicesprogram. Note: Citrix Hypervisor 8.2 Cumulative Update 1 reaches end of life on Jun 25, 2025. Upgrade toXenServer...

7.2AI score