CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

UbuntuCve•added 2026/05/27 12:0 a.m.•7 views

CVE-2026-46071

KVM: nSVM: Avoid clearing VMCBLBR in vmcb12...

5.8AI score0.00022EPSS

CNNVD•added 2026/05/27 12:0 a.m.•5 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the KVM SVM module not properly injecting UD exceptions when EFER.SVME=0 is set. This may lead to...

5.8AI score0.00032EPSS

Exploits0References6

RedHat Linux•added 2026/05/20 11:40 p.m.•5 views

kernel: Linux kernel KVM: Privilege escalation or denial of service due to improper shadow page table entry handling

A flaw was found in the Linux kernel's Kernel-based Virtual Machine KVM component. A local attacker with privileges on the host system could exploit a vulnerability in how KVM handles shadow page table entries SPTEs during memory-mapped I/O MMIO operations. By manipulating guest page table entrie...

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: smm: the number of GPRs in the SMRAM image depends on the image format. On 64-bit hosts, if the guest does not have X86FEATURELM, KVM will access 16 GPRs for a 32-bit SMMR image, resulting in an out-of-bound RAM access...

7.1CVSS5.9AI score0.00078EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Mark the target gfn of the emulated atomic instruction as dirty When emulating an atomic access on behalf of the guest, mark the target gfn as dirty if the CMPXCHG instruction attempts to be executed and fails without a...

5.5CVSS6.4AI score0.00019EPSS

RedHat Linux•added 2026/05/20 4:10 a.m.•8 views

kernel: Linux kernel KVM: Privilege escalation or denial of service due to improper shadow page table entry handling

SUSE CVE•added 2026/05/15 1:58 a.m.•6 views

SUSE CVE-2026-43483

In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Set/clear CR8 write interception when AVIC is deactivated Explicitly set/clear CR8 write interception when AVIC is deactivated to fix a bug where KVM leaves the interception enabled after AVIC is activated. E.g. if KVM...

5.7AI score0.00032EPSS

Exploits0References3

Positive Technologies•added 2026/05/14 12:0 a.m.•10 views

PT-2026-40939

Improper privilege management in the KVM key download component could allow an attacker to swap tokens and download sensitive keys, potentially resulting in unauthorized access to privileged resources and loss of confidentiality...

6CVSS5.8AI score0.00051EPSS

UbuntuCve•added 2026/05/13 4:16 p.m.•7 views

CVE-2026-43483

5.7AI score0.00032EPSS

Debian CVE•added 2026/05/13 3:8 p.m.•4 views

CVE-2026-43483

5.7AI score0.00032EPSS

Exploits0

CVE•added 2026/05/13 3:8 p.m.•19 views

CVE-2026-43483

The CVE-2026-43483 entry describes a Linux kernel KVM SVM issue where CR8 write interception is left enabled when AVIC is (de)activated. The underlying problem is an SVM implementation flaw that can cause a dangling CR8 intercept, which, when combined with a TPR sync bug fixed in a related commit...

5.8AI score0.00032EPSS

Exploits0References6

RedHat Linux•added 2026/05/11 12:49 a.m.•11 views

kernel: Linux kernel KVM: Privilege escalation or denial of service due to improper shadow page table entry handling

RedhatCVE•added 2026/05/10 8:20 p.m.•14 views

CVE-2026-25077

Account users are allowed by default to register templates to be downloaded directly to the primary storage for deploying instances using the KVM hypervisor. Due to missing file name sanitization, an attacker can register malicious templates to execute arbitrary code on the KVM hosts. This can...

8.8CVSS6.2AI score0.00024EPSS

Exploits0References1

CVE•added 2026/05/08 12:21 p.m.•14 views

CVE-2026-25077

CVE-2026-25077 affects Apache CloudStack with KVM deployments. Due to missing file name sanitization, account users can register templates for direct download to primary storage, enabling an attacker to execute arbitrary code on KVM hosts. This can compromise resource integrity and confidentialit...

8.8CVSS6.2AI score0.00024EPSS

Exploits0References2Affected Software1

RedHat Linux•added 2026/05/06 8:21 a.m.•3 views

kernel: Linux kernel KVM: Privilege escalation or denial of service due to improper shadow page table entry handling

AstraLinux•added 2026/05/03 11:59 p.m.•3 views

Astra Linux - уязвимость в linux-5.15

In the Linux kernel, the following vulnerability has been resolved: KVM: VMX – Prevent RSB underflow before vmenter On VMX, there is some timing balance between the time the guest’s SPECCTRL value is written and the vmenter. Balanced returns matched by a preceding call are usually acceptable...

5.5CVSS6.2AI score0.00015EPSS