Lucene search
K

23 matches found

Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.6 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-013323)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013323 advisory. In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Use onlinevcpus, not createdvcpus, to iterate over vCPUs Use the kvmforeachvcpu helper ...

5.5CVSS5.7AI score0.00222EPSS
Exploits0References4
HackRead
HackRead
added 2026/04/01 10:45 a.m.6 views

Cybersecurity Firm TAC Security Hits 10,000 Clients, Enters Top 5 in Global VM & AppSec

New York, New York, April 1st, 2026, CyberNewswire...

5.8AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2007-0830

Malware in sbrugna...

1.2CVSS6.4AI score0.00264EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-18732

Malware in sbrugna...

7.5CVSS7.5AI score0.01385EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.15 views

EUVD-2022-0867

Malicious code in bioql PyPI...

10CVSS9.2AI score0.02876EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/06/03 9:43 a.m.6 views

CVE-2024-54189

A privilege escalation vulnerability exists in the Snapshot functionality of Parallels Desktop for Mac version 20.1.1 build 55740. When a snapshot of a virtual machine is taken, a root service writes to a file owned by a normal user. By using a hard link, an attacker can write to an arbitrary fil...

7.8CVSS7.8AI score0.00277EPSS
Exploits1References1
CVE
CVE
added 2025/06/03 9:43 a.m.76 views

CVE-2024-54189

Summary: CVE-2024-54189 is a local privilege-escalation vulnerability in Parallels Desktop for Mac 20.1.1 (build 55740). During VM snapshot creation, the root-level prl_disp_service writes metadata to a snapshot.xml file in a VM directory owned by a normal user. An attacker can replace that file ...

7.8CVSS7.9AI score0.00277EPSS
Exploits1References2Affected Software1
Veracode
Veracode
added 2024/10/25 7:53 a.m.7 views

Ununauthorized Root Access

github.com/kubernetes-sigs/image-builder is vulnerable to Unauthorized Root Access. The vulnerability is due to default credentials being enabled during the image build process with the Nutanix, OVA, QEMU, or raw providers, which could allow attackers to gain root access if they reach the VM wher...

9.8CVSS7.1AI score0.02223EPSS
Exploits0References4Affected Software1
CNNVD
CNNVD
added 2024/05/03 12:0 a.m.5 views

Corel Parallels Desktop 安全漏洞

Corel Parallels Desktop is a suite of virtual machine software for the macOS platform from Canada's Corel Digital Technology Corel. A security vulnerability exists in Corel Parallels Desktop that stems from a specific flaw in the virtio-gpu virtual appliance that lacks proper validation of...

8.3CVSS8.2AI score0.00757EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/11/07 12:0 a.m.20 views

Fedora 39 : open-vm-tools (2023-20b6ac4b6c)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-20b6ac4b6c advisory. Package new upstream version of open-vm-tools-12.3.0-22234872. Security fix for CVE-2023-20900, CVE-2023-20867 Tenable has extracted the preceding...

7.5CVSS7AI score0.13638EPSS
Exploits0References3
OSV
OSV
added 2023/06/13 5:15 p.m.11 views

CVE-2023-20867

A fully compromised ESXi host can force VMware Tools to fail to authenticate host-to-guest operations, impacting the confidentiality and integrity of the guest virtual machine...

3.9CVSS4.8AI score0.13638EPSS
Exploits0References10
Vulnrichment
Vulnrichment
added 2023/04/15 12:0 a.m.4 views

CVE-2021-45464

kvmtool through 39181fc allows an out-of-bounds write, related to virtio/balloon.c and virtio/pci.c. This allows a guest OS user to execute arbitrary code on the host machine...

8.9AI score0.00382EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2022/05/13 1:32 a.m.19 views

express-cart unrestricted file upload vulnerability

Unrestricted file upload RCE in express-cart module before 1.1.7 allows a privileged user to gain access in the hosting machine...

9CVSS6.9AI score0.2745EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2018/07/27 8:0 p.m.25 views

CVE-2017-15097

Privilege escalation flaws were found in the Red Hat initialization scripts of PostgreSQL. An attacker with access to the postgres user account could use these flaws to obtain root access on the server machine...

6.5CVSS7AI score0.00541EPSS
Exploits0References6
OSV
OSV
added 2018/03/07 9:32 a.m.12 views

SUSE-SU-2018:0630-1 Security update for java-1_7_1-ibm

This update for java-171-ibm provides the following fix: The version was updated to 7.1.4.20 bsc1082810 Security fixes: - CVE-2018-2633 CVE-2018-2637 CVE-2018-2634 CVE-2018-2582 CVE-2018-2641 CVE-2018-2618 CVE-2018-2657 CVE-2018-2603 CVE-2018-2599 CVE-2018-2602 CVE-2018-2678 CVE-2018-2677...

8.3CVSS6.2AI score0.07525EPSS
Exploits0References21
myhack58
myhack58
added 2015/05/15 12:0 a.m.47 views

Vulnerability warning:“venom(VENOM”the vulnerability affects millions worldwide virtual machine security-vulnerability warning-the black bar safety net

! CrowdStrike, the company security researchers said that a named“venom(VENOM”QEMU could allow millions of virtual machines in a cyber-attack risk, the vulnerability can cause the virtual machine to escape, the threat to the world's largest cloud service provider's data security. QEMU is an...

7.7CVSS0.6AI score0.15275EPSS
Exploits1
The Hacker News
The Hacker News
added 2015/05/14 5:32 a.m.108 views

Venom Vulnerability Exposes Most Data Centers to Cyber Attacks

Just after a new security vulnerability surfaced Wednesday, many tech outlets started comparing it with HeartBleed, the serious security glitch uncovered last year that rendered communications with many well-known web services insecure, potentially exposing Millions of plain-text passwords. But...

7.7CVSS7.2AI score0.15275EPSS
Exploits1
ThreatPost
ThreatPost
added 2015/04/17 11:36 a.m.11 views

Dennis Fisher and Mike Mimoso Discuss the Windows HTTP.sys Vulnerability and More

Dennis Fisher and Mike Mimoso discuss the Windows HTTP.sys vulnerability, Google’s decision to turn off the NPAPI in Chrome and the voting machine security disaster in Virginia. Download: digitalunderground195.mp3 Music by Chris Gonsalves...

2.6AI score
Exploits0References2
myhack58
myhack58
added 2008/12/01 12:0 a.m.26 views

Export the administrator password file-vulnerability warning-the black bar safety net

sa by default can be read in the sam key. Should. reg export HKLM\SAM\SAM\Domains\Account\Users\000001F4 c:\old.reg net user administrator test With the administrator login. Runs out the machine after reg import c:\test.reg There is no need to clone. Find the corresponding sid...

1.4AI score
Exploits0
securityvulns
securityvulns
added 2004/07/05 12:0 a.m.29 views

Linux Virtual Server procfs DoS

Virtual machine users can change /proc permissions...

3AI score
Exploits0References1Affected Software1
Rows per page
Query Builder