UBUNTU-CVE-2026-48914

A flaw was found in QEMU's virtio-blk device. The issue arises because the device does not properly validate the size of input descriptors before writing data. A malicious guest with high privileges could exploit this vulnerability by submitting a malformed virtio-blk SCSI request, leading to an...

Astra Linux - уязвимость в libvirt

A flaw was discovered in the libvirt libxl driver. A malicious guest could continuously reboot itself, causing libvirtd on the host to become locked out or crash, resulting in a denial-of-service condition...

SUSE CVE-2026-43096

In the Linux kernel, the following vulnerability has been resolved: mshv: Fix infinite fault loop on permission-denied GPA intercepts Prevent infinite fault loops when guests access memory regions without proper permissions. Currently, mshvhandlegpaintercept attempts to remap pages for all faults...

CVE-2026-43096

A flaw was found in the Linux kernel's mshv component. A malicious guest operating system could exploit this by attempting to write to read-only memory regions or execute code in non-executable regions. This can lead to an infinite fault loop, causing the virtual CPU vCPU to spin indefinitely and...

CVE-2026-35195

A flaw was found in Wasmtime, a runtime for WebAssembly. A malicious guest component can exploit an issue where the host does not validate memory allocation requests. This allows the guest to write arbitrary data to locations outside its designated memory. Depending on the configuration, this cou...

CVE-2023-31364

Improper handling of direct memory writes in the input-output memory management unit could allow a malicious guest virtual machine VM to flood a host with writes, potentially causing a fatal machine check error resulting in denial of service...

CVE-2025-14876

A flaw was found in the virtio-crypto device of QEMU. A malicious guest operating system can exploit a missing length limit in the AKCIPHER path, leading to uncontrolled memory allocation. This can result in a denial of service DoS on the host system by causing the QEMU process to terminate...

CVE-2025-33220

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager, where a malicious guest could cause heap memory access after the memory is freed. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of service, or...

CVE-2025-33220

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager, where a malicious guest could cause heap memory access after the memory is freed. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of service, or...

MiracleLinux 9 : dpdk-23.11-2.el9_5 (AXSA:2025-9535:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-9535:01 advisory. dpdk: Denial Of Service from malicious guest on hypervisors using DPDK Vhost library CVE-2024-11614 Tenable has extracted the preceding description block...

EUVD-2019-11345

Malware in sbrugna...

EUVD-2020-18280

Malware in sbrugna...

EUVD-2021-27146

Malware in sbrugna...

EUVD-2021-26856

Malware in sbrugna...

EUVD-2024-32034

Malicious code in bioql PyPI...

EUVD-2022-0908

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2024-31144

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - For a brief summary of Xapi terminology, see: https://xapi-project.github.io/xen-api/overview.htmlobject- model-overview Xapi contains functionality to backup a...

Linux Distros Unpatched Vulnerability : CVE-2021-4147

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the libvirt libxl driver. A malicious guest could continuously reboot itself and cause libvirtd on the host to deadlock or crash, resulting ...

SUSE CVE-2025-23283

NVIDIA vGPU software for Linux-style hypervisors contains a vulnerability in the Virtual GPU Manager, where a malicious guest could cause stack buffer overflow. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, information...

CVE-2022-42309

Xenstore: Guests can crash xenstored Due to a bug in the fix of XSA-115 a malicious guest can cause xenstored to use a wrong pointer during node creation in an error path, resulting in a crash of xenstored or a memory corruption in xenstored causing further damage. Entering the error path can be...