Lucene search
K

754 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:21 a.m.1 views

SUSE CVE-2015-2150

Xen 3.3.x through 4.5.x and the Linux kernel through 3.19.1 do not properly restrict access to PCI command registers, which might allow local guest OS users to cause a denial of service non-maskable interrupt and host crash by disabling the 1 memory or 2 I/O decoding for a PCI Express device and...

4.9CVSS7.5AI score0.00534EPSS
Exploits0References14
SUSE CVE
SUSE CVE
added 2023/02/15 4:6 a.m.6 views

SUSE CVE-2019-19057

Two memory leaks in the mwifiexpcieinitevtring function in drivers/net/wireless/marvell/mwifiex/pcie.c in the Linux kernel through 5.3.11 allow attackers to cause a denial of service memory consumption by triggering mwifiexmappcimemory failures, aka CID-d10dcb615c8e...

4CVSS6.8AI score0.00788EPSS
Exploits0References15
SUSE CVE
SUSE CVE
added 2023/02/15 4:6 a.m.3 views

SUSE CVE-2019-19579

An issue was discovered in Xen through 4.12.x allowing attackers to gain host OS privileges via DMA in a situation where an untrusted domain has access to a physical device and assignable-add is not used, because of an incomplete fix for CVE-2019-18424. XSA-302 relies on the use of libxl's...

6.9CVSS6.2AI score0.00451EPSS
Exploits0References11
SUSE CVE
SUSE CVE
added 2023/02/15 3:58 a.m.2 views

SUSE CVE-2020-13791

hw/pci/pci.c in QEMU 4.2.0 allows guest OS users to trigger an out-of-bounds access by providing an address near the end of the PCI configuration space...

5.5CVSS7.7AI score0.00398EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/01/17 12:0 a.m.6 views

PT-2024-11863 · Linux +4 · Linux Kernel +4

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A reference count leak in the Linux kernel has been identified and resolved. The issue occurs in the has external pci function, where a pci dev put call is missing, leading to a...

9.1CVSS6.6AI score0.03702EPSS
Exploits12References1811
Positive Technologies
Positive Technologies
added 2022/12/06 12:0 a.m.4 views

PT-2024-11822 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a missing sentinel in the struct soc device attribute array in the Linux kernel's PCI driver for mt7621. This causes an error when assessed by the soc device...

5.5CVSS6.4AI score0.00233EPSS
Exploits0References25
RedHat Linux
RedHat Linux
added 2022/08/18 3:12 p.m.57 views

Important: Red Hat Security Advisory: Red Hat Application Interconnect 1.0 Release (rpms)

Red Hat Application Interconnect 1.0 introduces a service network, linking TCP and HTTP services across the hybrid cloud. A service network enables communication between services running in different network locations or sites. It allows geographically distributed services to connect as if they...

7.5CVSS6.7AI score0.01875EPSS
Exploits3References11
The Hacker News
The Hacker News
added 2022/06/15 9:45 a.m.65 views

New Hertzbleed Side Channel Attack Affects All Modern AMD and Intel CPUs

A newly discovered security vulnerability in modern Intel and AMD processors could let remote attackers steal encryption keys via a power side channel attack. Dubbed Hertzbleed by a group of researchers from the University of Texas, the University of Illinois Urbana-Champaign, and the University ...

1.6AI score0.12043EPSS
Exploits0
OSV
OSV
added 2022/03/11 2:15 p.m.4 views

CVE-2022-21819

NVIDIA distributions of Jetson Linux contain a vulnerability where an error in the IOMMU configuration may allow an unprivileged attacker with physical access to the board direct read/write access to the entire system address space through the PCI bus. Such an attack could result in denial of...

7.6CVSS5.8AI score0.00385EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/12/06 12:0 a.m.3 views

Qualcomm 芯片缓冲区错误漏洞

A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way to miniaturize circuits mainly semiconductor devices, but also passive components, etc., and are from time to time fabricated on the surface of semiconductor wafers. A buffer error vulnerability exists in multiple Qualcomm products...

7.8CVSS7.5AI score0.00144EPSS
Exploits0References4
OSV
OSV
added 2021/10/06 2:15 p.m.1 views

DEBIAN-CVE-2021-28702

PCI devices with RMRRs not deassigned correctly Certain PCI devices in a system might be assigned Reserved Memory Regions specified via Reserved Memory Region Reporting, "RMRR". These are typically used for platform tasks such as legacy USB emulation. If such a device is passed through to a guest...

7.6CVSS7.4AI score0.00427EPSS
Exploits0References1
OSV
OSV
added 2021/09/21 10:11 p.m.5 views

CLSA-2021-1632262296 Fix of CVE: CVE-2021-38160, CVE-2021-3573, CVE-2021-38205, CVE-2021-3178, CVE-2021-20265, CVE-2021-3612, CVE-2021-32399, CVE-2021-37159, CVE-2014-4508, CVE-2021-28972, CVE-2021-34693, CVE-2021-20292

ELSCVE-666: CVE-2021-34693: can: bcm: fix infoleak in struct bcmmsghead - ELSCVE-705: CVE-2021-38160: virtioconsole: Assure used length from device is limited - ELSCVE-769: CVE-2014-4508: x8632, entry: Do syscall exit work on badsys CVE-2014-4508 - ELSCVE-844: CVE-2021-3573: Bluetooth: use...

7.8CVSS7AI score0.02417EPSS
Exploits3References1
OSV
OSV
added 2021/06/04 7:42 p.m.9 views

UVI-2021-1000584 interconnect: qcom: bcm-voter: add a missing of_node_put()

interconnect: qcom: bcm-voter: add a missing ofnodeput This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.42 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2021/06/04 7:42 p.m.12 views

GSD-2021-1000584 interconnect: qcom: bcm-voter: add a missing of_node_put()

interconnect: qcom: bcm-voter: add a missing ofnodeput This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.42 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2021/06/04 7:36 p.m.11 views

UVI-2021-1000545 interconnect: qcom: bcm-voter: add a missing of_node_put()

interconnect: qcom: bcm-voter: add a missing ofnodeput This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.9 by commit...

7.2AI score
Exploits0
Positive Technologies
Positive Technologies
added 2021/05/11 12:0 a.m.3 views

PT-2024-11200 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A reference leak issue has been identified in the Linux kernel, specifically in the interconnect: qcom: bcm-voter component. The problem arises from a missing of node put call in the o...

5.5CVSS5.4AI score0.00222EPSS
Exploits0References16
OSV
OSV
added 2021/03/22 5:15 p.m.4 views

AZL-6543 CVE-2021-28972 affecting package kernel for versions less than 5.10.78.1-1

In drivers/pci/hotplug/rpadlparsysfs.c in the Linux kernel through 5.11.8, the RPA PCI Hotplug driver has a user-tolerable buffer overflow when writing a new device name to the driver from userspace, allowing userspace to write data to the kernel stack frame directly. This occurs because...

6.7CVSS7AI score0.00858EPSS
Exploits0References1
ThreatPost
ThreatPost
added 2021/03/08 9:20 p.m.56 views

Newest Intel Side-Channel Attack Sniffs Out Sensitive Data

Intel processors are vulnerable to a new side-channel attack, which researchers said can allow attackers to steal sensitive information such as encryption keys or passwords. Unlike previous side-channel attacks, this attack does not rely on sharing memory, cache sets and other former tactics...

0.3AI score
Exploits0References9
The Hacker News
The Hacker News
added 2021/03/08 11:8 a.m.155 views

Malware Can Exploit New Flaw in Intel CPUs to Launch Side-Channel Attacks

A new research has yielded yet another means to pilfer sensitive data by exploiting what's the first "on-chip, cross-core" side-channel attack targeting the ring interconnect used in Intel Coffee Lake and Skylake processors. Published by a group of academics from the University of Illinois at...

0.3AI score
Exploits0
The Hacker News
The Hacker News
added 2021/03/08 11:8 a.m.3 views

Malware Can Exploit New Flaw in Intel CPUs to Launch Side-Channel Attacks

A new research has yielded yet another means to pilfer sensitive data by exploiting what's the first "on-chip, cross-core" side-channel attack targeting the ring interconnect used in Intel Coffee Lake and Skylake processors. Published by a group of academics from the University of Illinois at...

5.9AI score
Exploits0
Rows per page
Query Builder