Lucene search
K

347 matches found

CVE
CVE
added 2026/04/16 6:42 p.m.57 views

CVE-2023-20585

CVE-2023-20585 : Insufficient checks of the RMP on host buffer access in IOMMU may allow a privileged attacker with a compromised hypervisor to trigger an out-of-bounds condition, risking confidentiality of guest memory and integrity. The vulnerability is associated with AMD IOMMU (RMP) handling....

5.6CVSS6.5AI score0.00098EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/14 12:0 a.m.11 views

Microsoft Input-Output Memory Management Unit 安全漏洞

The Microsoft Input-Output Memory Management Unit is a hardware component of the American company Microsoft. It connects I/O buses that support DMA functions to system memory. There are security vulnerabilities associated with the Microsoft Input-Output Memory Management Unit. The following...

5.6CVSS6.5AI score0.00098EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/04/08 12:0 a.m.4 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006664)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006664 advisory. In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: avoid invalid memory access via nodeonlineNUMANONODE KASAN reports: 4.668325 T0 BUG:...

7.1CVSS5.8AI score0.00215EPSS
Exploits0References4
EUVD
EUVD
added 2026/04/03 6:31 p.m.3 views

EUVD-2026-18664

In the Linux kernel, the following vulnerability has been resolved: iommu/sva: Fix crash in iommusvaunbinddevice domain-mm-iommumm can be freed by iommudomainfree: iommudomainfree mmdrop mmdrop mmpasiddrop After iommudomainfree returns, accessing domain-mm-iommumm may dereference a freed mm...

5.8AI score0.00127EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/04/03 6:22 p.m.6 views

CVE-2026-23429

A flaw was found in the Linux kernel. Specifically, within the input/output memory management unit IOMMU subsystem, a memory management error can occur. When the iommusvaunbinddevice function is called, it may attempt to access a memory area that has already been freed. This can lead to a system...

7.8CVSS5.8AI score0.00127EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/04/03 5:46 p.m.5 views

CVE-2026-31398

A flaw was found in the Linux kernel's memory management unit MMU. A local user could exploit this vulnerability by manipulating memory operations, leading to incorrect page table entry PTE restoration for lazyfree folios during batch unmapping. This issue can cause memory pages with mixed writab...

7.8CVSS5.8AI score0.00121EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/04/03 4:16 p.m.4 views

CVE-2026-23432

In the Linux kernel, the following vulnerability has been resolved: mshv: Fix use-after-free in mshvmapusermemory error path In the error path of mshvmapusermemory, calling vfree directly on the region leaves the MMU notifier registered. When userspace later unmaps the memory, the notifier fires...

7.8CVSS5.7AI score0.0012EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/04/03 12:0 a.m.9 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the failure of the mshvmapusermemory function to unregister the MMU notifier, allowing for reuse...

7.8CVSS7AI score0.0012EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2026/04/02 8:1 a.m.7 views

KVM: x86/mmu: Drop/zap existing present SPTE even when creating an MMIO SPTE

...

8.4CVSS5.7AI score0.00184EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2026/04/01 9:16 a.m.8 views

CVE-2026-23402

In the Linux kernel, the following vulnerability has been resolved: KVM: x86/mmu: Only WARN in direct MMUs when overwriting shadow-present SPTE Adjust KVM's sanity check against overwriting a shadow-present SPTE with a another SPTE with a different target PFN to only apply to direct MMUs, i.e. on...

5.5CVSS5.7AI score0.00165EPSS
Exploits0References3
OSV
OSV
added 2026/04/01 9:16 a.m.7 views

UBUNTU-CVE-2026-23401

In the Linux kernel, the following vulnerability has been resolved: KVM: x86/mmu: Drop/zap existing present SPTE even when creating an MMIO SPTE When installing an emulated MMIO SPTE, do so after dropping/zapping the existing SPTE if it's shadow-present. While commit a54aa15c6bda3 was right about...

8.1CVSS5.7AI score0.00184EPSS
Exploits0References4
CVE
CVE
added 2026/04/01 8:36 a.m.15 views

CVE-2026-23402

CVE-2026-23402 affects the Linux kernel KVM MMU on x86. The issue arises when overwriting a shadow-present SPTE with a different PFN, where KVM’s sanity check could allow harmful state changes in direct MMUs (i.e., MMUs without shadowed gPTEs). The problem is tracked in KVM’s mmu_set_spte path, a...

5.5CVSS5.7AI score0.00165EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/04/01 8:36 a.m.35 views

CVE-2026-23402 KVM: x86/mmu: Only WARN in direct MMUs when overwriting shadow-present SPTE

In the Linux kernel, the following vulnerability has been resolved: KVM: x86/mmu: Only WARN in direct MMUs when overwriting shadow-present SPTE Adjust KVM's sanity check against overwriting a shadow-present SPTE with a another SPTE with a different target PFN to only apply to direct MMUs, i.e. on...

0.00165EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/04/01 8:36 a.m.6 views

CVE-2026-23402

In the Linux kernel, the following vulnerability has been resolved: KVM: x86/mmu: Only WARN in direct MMUs when overwriting shadow-present SPTE Adjust KVM's sanity check against overwriting a shadow-present SPTE with a another SPTE with a different target PFN to only apply to direct MMUs, i.e. on...

5.5CVSS5.2AI score0.00165EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/04/01 12:0 a.m.5 views

PT-2026-29485

In the Linux kernel, the following vulnerability has been resolved: KVM: x86/mmu: Only WARN in direct MMUs when overwriting shadow-present SPTE Adjust KVM's sanity check against overwriting a shadow-present SPTE with a another SPTE with a different target PFN to only apply to direct MMUs, i.e. on...

5.7AI score0.00165EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/03/25 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-23361

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - PCI: dwc: ep: Flush MSI-X write before unmapping its ATU entry Endpoint drivers use dwpcieepraisemsixirq to raise an MSI-X interrupt to the host using a writel,...

7.8CVSS6AI score0.00129EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/03/25 12:0 a.m.11 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from a race condition between MSI-X writes and the unmapping of ATU entries. This could lead to memory...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/03/02 7:53 p.m.5 views

CVE-2023-31364

Improper handling of direct memory writes in the input-output memory management unit could allow a malicious guest virtual machine VM to flood a host with writes, potentially causing a fatal machine check error resulting in denial of service...

8.3CVSS5.9AI score0.00247EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/02 6:42 p.m.7 views

EUVD-2026-9241

In smmudetachdev of arm-smmu-v3.c, there is a possible out of bounds write due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...

6.7CVSS6.1AI score0.00147EPSS
Exploits0References4
NVD
NVD
added 2026/02/26 9:28 p.m.5 views

CVE-2023-31364

Improper handling of direct memory writes in the input-output memory management unit could allow a malicious guest virtual machine VM to flood a host with writes, potentially causing a fatal machine check error resulting in denial of service...

8.3CVSS0.00247EPSS
Exploits0References1
Rows per page
Query Builder