Lucene search
K

413 matches found

CNNVD
CNNVD
added 2026/05/27 12:0 a.m.18 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from an out-of-bound MMIO read performed by the queue reader/writer index exceeding the REMOTEQUEUESIZE rang...

5.8AI score0.00145EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/05/26 6:6 a.m.12 views

kernel: Linux kernel KVM: Privilege escalation or denial of service due to improper shadow page table entry handling

A flaw was found in the Linux kernel's Kernel-based Virtual Machine KVM component. A local attacker with privileges on the host system could exploit a vulnerability in how KVM handles shadow page table entries SPTEs during memory-mapped I/O MMIO operations. By manipulating guest page table entrie...

8.1CVSS5.8AI score0.00184EPSS
Exploits0References5
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Linux 5.10, Linux

In the Linux kernel, the following vulnerabilities have been resolved: RISC-V: Ensure that port I/O string accessors actually work properly. Fixed port I/O string accessors such as insb’, outsb’, etc., which use the physical PCI port I/O address rather than the corresponding memory mapping to...

6.1AI score0.00179EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Qemu

A reentrancy issue related to DMA was discovered in the Tulip device emulation in QEMU. When Tulip reads from or writes to the rx/tx descriptor, or copies a rx/tx frame, it does not check whether the destination address is its own MMIO address. This can cause the device to trigger MMIO handlers...

7.8CVSS6.9AI score0.00411EPSS
Exploits1References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Linux, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Fixed the issue where immediate work requests were flushed to the completion queue incorrectly. The opcode of the send queue element was set correctly during the flushing of immediate work requests in the post-sendqueue...

5.9AI score0.00206EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Open-coded GGTT MMIO access protection. GGTT MMIO access is currently protected by hotplug drmdeventer, which works correctly when the driver loads successfully and is later unbound or unloaded. However, if the driver loa...

7.8CVSS4.6AI score0.00129EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Do not allow mapping the MMIO HDP page with large pages. In that case, we do not receive the correct offset. The GPU has an unused 4K area of the register BAR space, into which we can remap registers. We remap the HDP...

7.8CVSS6.3AI score0.00223EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/05/20 4:10 a.m.11 views

kernel: Linux kernel KVM: Privilege escalation or denial of service due to improper shadow page table entry handling

A flaw was found in the Linux kernel's Kernel-based Virtual Machine KVM component. A local attacker with privileges on the host system could exploit a vulnerability in how KVM handles shadow page table entries SPTEs during memory-mapped I/O MMIO operations. By manipulating guest page table entrie...

8.1CVSS5.8AI score0.00184EPSS
Exploits0References5
CVE
CVE
added 2026/05/15 2:51 a.m.18 views

CVE-2024-36332

CVE-2024-36332 concerns improper isolation of GPU hardware register space. The AMD bulletin/related records describe a vulnerability where a compromised Guest VM with privileged access could access a restricted range of GPU MMIO registers, potentially forcing a host OS reboot and causing Denial o...

6.8CVSS5.8AI score0.00105EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/15 2:51 a.m.17 views

EUVD-2024-55587

Improper isolation of GPU HW register space could allow a privileged attacker in malicious Guest Virtual Machine VM to perform unauthorized access to specific victim range of GPU MMIO register space, potentially causing the host OS to reboot and creating a Denial of Service DOS condition...

6.8CVSS5.8AI score0.00105EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/15 2:51 a.m.7 views

CVE-2024-36332

Improper isolation of GPU HW register space could allow a privileged attacker in malicious Guest Virtual Machine VM to perform unauthorized access to specific victim range of GPU MMIO register space, potentially causing the host OS to reboot and creating a Denial of Service DOS condition...

6.8CVSS5.8AI score0.00105EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/15 2:51 a.m.9 views

CVE-2024-36332

Improper isolation of GPU HW register space could allow a privileged attacker in malicious Guest Virtual Machine VM to perform unauthorized access to specific victim range of GPU MMIO register space, potentially causing the host OS to reboot and creating a Denial of Service DOS condition...

6.8CVSS5.8AI score0.00105EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/15 12:0 a.m.11 views

PT-2026-41243

Improper isolation of GPU HW register space could allow a privileged attacker in malicious Guest Virtual Machine VM to perform unauthorized access to specific victim range of GPU MMIO register space, potentially causing the host OS to reboot and creating a Denial of Service DOS condition...

6.8CVSS5.8AI score0.00105EPSS
Exploits0References2
NVD
NVD
added 2026/05/13 4:17 a.m.16 views

CVE-2025-61971

Missing lock bit protection for NBIO registers could allow a local admin-privileged attacker to modify MMIO routing configurations, potentially resulting in loss of SEV-SNP guest integrity...

5.9CVSS0.00116EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/13 3:2 a.m.15 views

EUVD-2025-209811

Missing lock bit protection for NBIO registers could allow a local admin-privileged attacker to modify MMIO routing configurations, potentially resulting in loss of SEV-SNP guest integrity...

5.9CVSS5.8AI score0.00116EPSS
Exploits0References1
Amd
Amd
added 2026/05/12 12:0 a.m.22 views

AMD EPYC™ and AMD EPYC™ Embedded Series Processor Vulnerabilities – May 2026

CVE Details Refer to Glossary for explanation of terms CVE ID| CVE Description| CVSS Vector ---|---|--- CVE-2025-61972| Missing lock bit protection for NBIO registers could allow a local admin-privileged attacker to gain arbitrary System Management Network SMN access, potentially resulting in...

8.5CVSS6.3AI score0.00186EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/05/06 10:57 p.m.10 views

CVE-2026-43242

A flaw was found in the soc: ti: k3-socinfo module of the Linux kernel. This vulnerability occurs when the mmio regmap memory-mapped I/O register map is allocated during a probe operation but is not properly freed upon probe failure. This resource leak could potentially lead to system instability...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/05/06 9:19 p.m.22 views

kernel: Linux kernel KVM: Privilege escalation or denial of service due to improper shadow page table entry handling

A flaw was found in the Linux kernel's Kernel-based Virtual Machine KVM component. A local attacker with privileges on the host system could exploit a vulnerability in how KVM handles shadow page table entries SPTEs during memory-mapped I/O MMIO operations. By manipulating guest page table entrie...

8.1CVSS5.8AI score0.00184EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/05/06 5:34 p.m.12 views

kernel: Linux kernel KVM: Privilege escalation or denial of service due to improper shadow page table entry handling

A flaw was found in the Linux kernel's Kernel-based Virtual Machine KVM component. A local attacker with privileges on the host system could exploit a vulnerability in how KVM handles shadow page table entries SPTEs during memory-mapped I/O MMIO operations. By manipulating guest page table entrie...

8.1CVSS5.8AI score0.00184EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2026/05/06 11:27 a.m.5 views

CVE-2026-43155

In the Linux kernel, the following vulnerability has been resolved: mux: mmio: fix regmap leak on probe failure The mmio regmap that may be allocated during probe is never freed. Switch to using the device managed allocator so that the regmap is released on probe failures e.g. probe deferral and ...

5.5CVSS5.7AI score0.00126EPSS
Exploits0
Rows per page
Query Builder