CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

86 matches found

RedHat Linux•added 2025/07/01 3:33 p.m.•7 views

microcode_ctl: From CVEorg collector

New Spectre-v2 attack classes have been discovered within CPU architectures that enable self-training exploitation of speculative execution within the same privilege domain. These novel techniques bypass existing hardware and software mitigations, including IBPB, eIBRS, and BHINO, by leveraging...

5.7CVSS6.9AI score0.00349EPSS

Exploits0References6

RedHat Linux•added 2025/07/01 2:55 p.m.•3 views

microcode_ctl: From CVEorg collector

5.7CVSS6.9AI score0.00349EPSS

Exploits0References6

RedHat Linux•added 2025/07/01 2:44 p.m.•3 views

microcode_ctl: From CVEorg collector

5.7CVSS6.9AI score0.00349EPSS

Exploits0References6

RedHat Linux•added 2025/06/24 2:16 a.m.•1 views

microcode_ctl: From CVEorg collector

5.7CVSS7.2AI score0.00349EPSS

Exploits0References6

Packet Storm News•added 2025/05/25 12:0 a.m.•3 views

Secure IVSHMEM: End-To-End Shared-Memory Protocol with Hypervisor-CA Handshake and In-Kernel Access Control

In-host shared memory IVSHMEM enables high-throughput, zero-copy communication between virtual machines, but today's implementations lack any security control, allowing any application to eavesdrop or tamper with the IVSHMEM region. This paper presents Secure IVSHMEM, a protocol that provides...

7.3AI score

Exploits0

Packet Storm News•added 2025/05/18 12:0 a.m.•3 views

An In-Kernel Forensics Engine for Investigating Evasive Attacks

Over the years, adversarial attempts against critical services have become more effective and sophisticated in launching low-profile attacks. This trend has always been concerning. However, an even more alarming trend is the increasing difficulty of collecting relevant evidence about these attack...

7.1AI score

Exploits0

Microsoft CVE•added 2025/04/09 7:0 a.m.•6 views

KVM: x86: Reject Hyper-V's SEND_IPI hypercalls if local APIC isn't in-kernel

...

5.5CVSS7.3AI score0.0022EPSS

Exploits0

SUSE CVE•added 2025/02/28 2:20 a.m.•6 views

SUSE CVE-2025-21779

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Reject Hyper-V's SENDIPI hypercalls if local APIC isn't in-kernel Advertise support for Hyper-V's SENDIPI and SENDIPIEX hypercalls if and only if the local API is emulated/virtualized by KVM, and explicitly reject said...

5.5CVSS7.5AI score0.0022EPSS

Exploits0References14

OSV•added 2025/02/27 3:15 a.m.•5 views

DEBIAN-CVE-2025-21779

5.5CVSS5.7AI score0.0022EPSS

Exploits0References1

OSV•added 2025/02/27 3:15 a.m.•8 views

AZL-57959 CVE-2025-21779 affecting package kernel for versions less than 6.6.79.1-1

5.5CVSS6.3AI score0.0022EPSS

Exploits0References1

OSV•added 2025/02/26 7:1 a.m.•1 views

UBUNTU-CVE-2022-49420

In the Linux kernel, the following vulnerability has been resolved: net: annotate races around sk-skbounddevif UDP sendmsg is lockless, and reads sk-skbounddevif while this field can be changed by another thread. Adds minimal annotations to avoid KCSAN splats for UDP. Following patches will add...

5.5CVSS6.4AI score0.00211EPSS

Exploits0References5

BDU FSTEC•added 2024/12/02 12:0 a.m.•2 views

Vulnerabilities of IB/IpoIB components in the Linux operating system’s kernel, allowing attackers to cause service failures

The vulnerability of the IB/IpoIB components of the Linux operating system’s kernel is related to the assignment of the NULL pointer in the function ipoibintfinit. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS5.6AI score0.0025EPSS

Exploits0References20Affected Software4

SUSE CVE•added 2024/10/21 3:46 p.m.•4 views

SUSE CVE-2024-47727

In the Linux kernel, the following vulnerability has been resolved: x86/tdx: Fix "in-kernel MMIO" check TDX only supports kernel-initiated MMIO operations. The handlemmio function checks if the VE exception occurred in the kernel and rejects the operation if it did not. However, userspace can...

5.5CVSS6.2AI score0.00247EPSS

Exploits0References19

RedhatCVE•added 2024/10/21 3:40 p.m.•14 views

CVE-2024-47727

A flaw was found in the Linux kernel. Userspace can deceive the kernel into performing MMIO Memory-Mapped IO operations in TDX Trust Domain Extensions on its behalf, allowing a VE Virtualization Exception to be incorrectly handled as a in-kernel MMIO operation. Mitigation Mitigation for this issu...

7.8CVSS7.8AI score0.00247EPSS

Exploits0References4

NVD•added 2024/10/21 1:15 p.m.•14 views

CVE-2024-47727

7.8CVSS0.00247EPSS

Exploits0References6

OSV•added 2024/10/21 12:14 p.m.•15 views

CVE-2024-47727 x86/tdx: Fix "in-kernel MMIO" check

7.8CVSS5.9AI score0.00247EPSS

Exploits0References9

Vulnrichment•added 2024/10/21 12:14 p.m.•11 views

CVE-2024-47727 x86/tdx: Fix "in-kernel MMIO" check

6.8AI score0.00247EPSS

Exploits0References5

Debian CVE•added 2024/10/21 12:14 p.m.•10 views

CVE-2024-47727

7.8CVSS6.2AI score0.00247EPSS

Exploits0

CNNVD•added 2024/10/21 12:0 a.m.•1 views

Linux kernel 代码问题漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from improper in-kernel MMIO checking in the x86/tdx subsystem, which could lead to a security breach...

7.8CVSS6.5AI score0.00247EPSS

Exploits0References7

OSV•added 2024/04/15 12:15 p.m.•0 views

UBUNTU-CVE-2024-24891

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in openEuler kernel on Linux allows Resource Leak Exposure. This vulnerability is associated with program files https://gitee.Com/openeuler/kernel/blob/openEuler-1.0-LTS/drivers/staging/gmjstcm/tcm.C. This issue affects...

6CVSS5.8AI score0.00223EPSS

Exploits0References8

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by