Lucene search
K

19 matches found

OSV
OSV
added 6 days ago2 views

ALPINE-CVE-2025-58151

varstored is a component of the Xapi toolstack handling UEFI Variables for a VM. It has a communication path with OVMF inside the VM involving mapping a buffer prepared by OVMF. Within varstored, there were insufficient compiler barriers, creating TOCTOU issues with data in the shared buffer. The...

9.4CVSS6.2AI score0.0012EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 6 days ago6 views

CVE-2025-58151

varstored is a component of the Xapi toolstack handling UEFI Variables for a VM. It has a communication path with OVMF inside the VM involving mapping a buffer prepared by OVMF. Within varstored, there were insufficient compiler barriers, creating TOCTOU issues with data in the shared buffer. The...

9.4CVSS6.2AI score0.0012EPSS
Exploits0References2
CVE
CVE
added 6 days ago18 views

CVE-2025-58151

CVE-2025-58151 affects varstored, a Xen/Xapi component that handles UEFI variables and maps guest memory to OVMF. The vulnerability arises from TOCTOU due to insufficient compiler barriers in the shared buffer, with exploitation depending on compiler-generated code, and the attacker potentially c...

9.4CVSS6.2AI score0.0012EPSS
Exploits0References3
Cvelist
Cvelist
added 6 days ago32 views

CVE-2025-58151 varstored: TOCTOU issues with mapped guest memory

varstored is a component of the Xapi toolstack handling UEFI Variables for a VM. It has a communication path with OVMF inside the VM involving mapping a buffer prepared by OVMF. Within varstored, there were insufficient compiler barriers, creating TOCTOU issues with data in the shared buffer. The...

9.4CVSS0.0012EPSS
Exploits0References1
EUVD
EUVD
added 6 days ago6 views

EUVD-2025-210447

varstored is a component of the Xapi toolstack handling UEFI Variables for a VM. It has a communication path with OVMF inside the VM involving mapping a buffer prepared by OVMF. Within varstored, there were insufficient compiler barriers, creating TOCTOU issues with data in the shared buffer. The...

9.4CVSS6.2AI score0.0012EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Firefox

Context-specific code was included in a shared jump table, resulting in assertions being triggered in multithreaded Wasm code. This vulnerability affects Firefox versions earlier than 86...

6.5CVSS6.9AI score0.01007EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2021-10891

Malware in sbrugna...

6.5CVSS7.8AI score0.01007EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/08/09 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2021-23970

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Context-specific code was included in a shared jump table; resulting in assertions being triggered in multithreaded wasm code. This vulnerability affects Firefo...

6.5CVSS7.6AI score0.01007EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 7:19 p.m.7 views

CVE-2021-23970

Context-specific code was included in a shared jump table; resulting in assertions being triggered in multithreaded wasm code. This vulnerability affects Firefox 86...

6.5CVSS6.4AI score0.01007EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 3:45 a.m.5 views

SUSE CVE-2021-23970

Context-specific code was included in a shared jump table; resulting in assertions being triggered in multithreaded wasm code. This vulnerability affects Firefox 86...

6.5CVSS8.5AI score0.01007EPSS
Exploits0References4
OSV
OSV
added 2021/02/26 2:15 a.m.3 views

CVE-2021-23970

Context-specific code was included in a shared jump table; resulting in assertions being triggered in multithreaded wasm code. This vulnerability affects Firefox 86...

6.5CVSS7.1AI score0.01007EPSS
Exploits0References3
Prion
Prion
added 2021/02/26 2:15 a.m.25 views

Code injection

Context-specific code was included in a shared jump table; resulting in assertions being triggered in multithreaded wasm code. This vulnerability affects Firefox 86...

4.3CVSS6.3AI score0.01007EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2021/02/26 2:15 a.m.12 views

UBUNTU-CVE-2021-23970

Context-specific code was included in a shared jump table; resulting in assertions being triggered in multithreaded wasm code. This vulnerability affects Firefox 86...

6.5CVSS6.8AI score0.01007EPSS
Exploits0References6
AlpineLinux
AlpineLinux
added 2021/02/26 1:57 a.m.68 views

CVE-2021-23970

Context-specific code was included in a shared jump table; resulting in assertions being triggered in multithreaded wasm code. This vulnerability affects Firefox 86...

6.5CVSS6.9AI score0.01007EPSS
Exploits0
Debian CVE
Debian CVE
added 2021/02/26 1:57 a.m.58 views

CVE-2021-23970

Context-specific code was included in a shared jump table; resulting in assertions being triggered in multithreaded wasm code. This vulnerability affects Firefox 86...

6.5CVSS8.3AI score0.01007EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/02/23 12:0 a.m.67 views

Mozilla Firefox < 86.0

The version of Firefox installed on the remote Windows host is prior to 86.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2021-07 advisory. - Mozilla developers Tyson Smith, Lars T Hansen, Valentin Gosu, and Sebastian Hengst reported memory safety bugs present ...

8.8CVSS7.9AI score0.0153EPSS
Exploits1References13
0day.today
0day.today
added 2018/03/06 12:0 a.m.18 views

Chrome V8 Out-Of-Bounds Read Exploit

Exploit for windows platform in category dos / poc Chrome: V8: Empty BytecodeJumpTable may lead to OOB read In the current implementation, the bytecode generator also emits empty jump tables...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2018/03/06 12:0 a.m.30 views

Chrome V8 JIT - Empty BytecodeJumpTable Out-of-Bounds Read

/ In the current implementation, the bytecode generator also emits empty jump tables. https://cs.chromium.org/chromium/src/v8/src/interpreter/bytecode-array-writer.cc?rcl=111e990462823c9faeee06b67c0dcf05749d4da8&l=89 So the bytecode for the example code would be generated as follows: Code: functi...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2018/03/05 12:0 a.m.29 views

Chrome V8 Out-Of-Bounds Read

Chrome: V8: Empty BytecodeJumpTable may lead to OOB read In the current implementation, the bytecode generator also emits empty jump tables. https://cs.chromium.org/chromium/src/v8/src/interpreter/bytecode-array-writer.cc?rcl=111e990462823c9faeee06b67c0dcf05749d4da8&l=89 So the bytecode for the...

Exploits0
Rows per page
Query Builder