Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

SUSE CVE
SUSE CVEadded 2023/02/15 4:26 a.m.3 views

SUSE CVE-2018-12433

DISPUTED cryptlib through 3.4.4 allows a memory-cache side-channel attack on DSA and ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover a key, the attacker needs access to either the local machine or a different virtual machine on the same physical host. NOTE: the...

4.9CVSS6.3AI score0.0008EPSS
Exploits1References3
SUSE CVE
SUSE CVEadded 2023/02/15 3:53 a.m.1 views

SUSE CVE-2020-25651

A flaw was found in the SPICE file transfer protocol. File data from the host system can end up in full or in parts in the client connection of an illegitimate local user in the VM system. Active file transfers from other users could also be interrupted, resulting in a denial of service. The...

6.4CVSS6.4AI score0.00115EPSS
Exploits1References8
RedHat Linux
RedHat Linuxadded 2021/05/18 2:16 p.m.3 views

spice-vdagent: possible file transfer DoS and information leak via active_xfers hash map

A flaw was found in the SPICE file transfer protocol. File data from the host system can partially or fully end up in the client connection of an unauthorized local user in the VM system. Active file transfers from other users could also be interrupted, resulting in a denial of service. The highe...

6.4CVSS5.7AI score0.00115EPSS
Exploits1References5
OSV
OSVadded 2020/11/03 12:0 a.m.1 views

UBUNTU-CVE-2020-25651

A flaw was found in the SPICE file transfer protocol. File data from the host system can end up in full or in parts in the client connection of an illegitimate local user in the VM system. Active file transfers from other users could also be interrupted, resulting in a denial of service. The...

6.4CVSS5.8AI score0.00115EPSS
Exploits1References4
OSV
OSVadded 2017/02/17 2:59 a.m.0 views

UBUNTU-CVE-2016-9637

The 1 ioportread and 2 ioportwrite functions in Xen, when qemu is used as a device model within Xen, might allow local x86 HVM guest OS administrators to gain qemu process privileges via vectors involving an out-of-range ioport access...

7.5CVSS7.1AI score0.00087EPSS
Exploits0References4
CNVD
CNVDadded 2016/06/08 12:0 a.m.1 views

Xen Denial of Service Vulnerability (CNVD-2016-03898)

Xen is an open source virtual machine monitor product developed at the University of Cambridge, UK. The product enables different and incompatible operating systems to run on the same computer and supports runtime migration to ensure uptime and avoid downtime. A security vulnerability exists in...

6.8CVSS8.5AI score0.00089EPSS
Exploits0References1
OSV
OSVadded 2014/10/02 2:55 p.m.1 views

UBUNTU-CVE-2014-7155

The x86emulate function in arch/x86/x86emulate/x86emulate.c in Xen 4.4.x and earlier does not properly check supervisor mode permissions, which allows local HVM users to cause a denial of service guest crash or gain guest kernel mode privileges via vectors involving an 1 HLT, 2 LGDT, 3 LIDT, or 4...

5.8CVSS7.2AI score0.01034EPSS
Exploits0References3
Rows per page
Query Builder