Lucene search
K

84 matches found

Tenable Nessus
Tenable Nessus
added 2024/12/10 12:0 a.m.18 views

OracleVM 3.4 : kernel-uek (OVMSA-2024-0016)

The remote OracleVM system is missing necessary patches to address security updates: 4.1.12-124.92.3- memcgwriteeventcontrol: fix a user-triggerable oops Al Viro Orabug: 37070674 CVE-2024-45021- ocfs2: fix races between hole punching and AIO+DIO Su Yue Orabug: 36835819...

7.8CVSS6.9AI score0.00622EPSS
Exploits0References35
Tenable Nessus
Tenable Nessus
added 2024/10/03 12:0 a.m.16 views

OracleVM 3.4 : kernel-uek (OVMSA-2024-0013)

The remote OracleVM system is missing necessary patches to address security updates: 4.1.12-124.90.3- SUNRPC: increase size of rpcwaitqueue.qlen from unsigned short to unsigned int Dai Ngo Orabug: 370554394.1.12-124.90.2- scsi: lpfc: Fix possible memory leak in lpfcrcvpadisc Justin Tee Orabug:...

7.8CVSS7AI score0.00282EPSS
Exploits0References15
Tenable Nessus
Tenable Nessus
added 2024/07/25 12:0 a.m.27 views

OracleVM 3.4 : kernel-uek (OVMSA-2024-0009)

The remote OracleVM system is missing necessary patches to address security updates: 4.1.12-124.87.2.2- net/mlx5e: drop shorter ethernet frames Manjunath Patil Orabug: 36660755 Tenable has extracted the preceding description block directly from the OracleVM security advisory. Note that Nessus has...

7.1CVSS6.9AI score0.00254EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/07/05 12:0 a.m.35 views

OracleVM 3.4 : kernel-uek (OVMSA-2024-0006)

The remote OracleVM system is missing necessary patches to address security updates: 4.1.12-124.87.2- net: sched: fix race condition in qdiscgraft Eric Dumazet Orabug: 35250827 CVE-2023-05904.1.12-124.87.1- ipv4: igmp: fix refcnt uaf issue when receiving igmp query packet Zhengchao Shao Orabug:...

7.8CVSS6.9AI score0.00553EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2024/03/07 12:0 a.m.69 views

OracleVM 3.4 : kernel-uek (OVMSA-2024-0003)

The remote OracleVM system is missing necessary patches to address security updates: - An issue was discovered in drivers/input/input.c in the Linux kernel before 5.17.10. An attacker can cause a denial of service panic because inputsetcapability mishandles the situation in which an event code...

7.5CVSS6.7AI score0.0051EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2023/12/11 12:0 a.m.34 views

OracleVM 3.4 : kernel-uek (OVMSA-2023-0025)

The remote OracleVM system is missing necessary patches to address security updates: - A flaw was found in the Netfilter subsystem in the Linux kernel. The xtu32 module did not validate the fields in the xtu32 structure. This flaw allows a local privileged attacker to trigger an out-of-bounds rea...

7.8CVSS6.8AI score0.00415EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2023/11/03 12:0 a.m.29 views

OracleVM 3.4 : kernel-uek (OVMSA-2023-0023)

The remote OracleVM system is missing necessary patches to address security updates: - An issue was discovered in the Linux kernel through 5.18.9. A type confusion bug in nftseteleminit leading to a buffer overflow could be used by a local attacker to escalate privileges, a different vulnerabilit...

7.8CVSS6.8AI score0.05451EPSS
Exploits18References21
Tenable Nessus
Tenable Nessus
added 2023/08/17 12:0 a.m.28 views

OracleVM 3.4 : kernel-uek (OVMSA-2023-0016)

The remote OracleVM system is missing necessary patches to address security updates: - A flaw was found in the Linux kernel. A denial of service flaw may occur if there is a consecutive request of the NVMEIOCTLRESET and the NVMEIOCTLSUBSYSRESET through the device file of the driver, resulting in ...

7.8CVSS6.5AI score0.0072EPSS
Exploits0References15
Tenable Nessus
Tenable Nessus
added 2023/08/17 12:0 a.m.32 views

OracleVM 3.4 : kernel-uek (OVMSA-2023-0017)

The remote OracleVM system is missing necessary patches to address security updates: - A use-after-free flaw was found in the Linux kernel's Atheros wireless adapter driver in the way a user forces the ath9khtcwaitfortarget function to fail with some input messages. This flaw allows a local user ...

7.8CVSS6.7AI score0.00804EPSS
Exploits2References15
Tenable Nessus
Tenable Nessus
added 2023/03/09 12:0 a.m.32 views

OracleVM 3.4 : kernel-uek (OVMSA-2023-0004)

The remote OracleVM system is missing necessary patches to address security updates: - An out-of-bounds memory access flaw was found in the Linux kernel Intel's iSMT SMBus host controller driver in the way a user triggers the I2CSMBUSBLOCKDATA with the ioctl I2CSMBUS with malicious input data. Th...

7.8CVSS6.7AI score0.00747EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2023/03/09 12:0 a.m.25 views

OracleVM 3.4 : sudo (OVMSA-2023-0003)

The remote OracleVM system is missing necessary patches to address security updates: - In Sudo before 1.9.12p2, the sudoedit aka -e feature mishandles extra arguments passed in the user- provided environment variables SUDOEDITOR, VISUAL, and EDITOR, allowing a local attacker to append arbitrary...

7.8CVSS8.2AI score0.55367EPSS
Exploits20References3
Tenable Nessus
Tenable Nessus
added 2023/01/04 12:0 a.m.40 views

OracleVM 3.4 : kernel-uek (OVMSA-2023-0001)

The remote OracleVM system is missing necessary patches to address security updates: - An issue was found in the Linux kernel in nfconntrackirc where the message handling can be confused and incorrectly matches the message. A firewall may be able to be bypassed when users are using unencrypted IR...

7.8CVSS5.5AI score0.02211EPSS
Exploits1References13
Tenable Nessus
Tenable Nessus
added 2022/12/08 12:0 a.m.41 views

OracleVM 3.4 : kernel-uek (OVMSA-2022-0031)

The remote OracleVM system is missing necessary patches to address security updates: - In the Linux kernel 5.0.21, mounting a crafted btrfs filesystem image, performing some operations, and unmounting can lead to a use-after-free in btrfsqueuework in fs/btrfs/async-thread.c. CVE-2019-19377 - Ther...

7.8CVSS5.4AI score0.034EPSS
Exploits7References17
Tenable Nessus
Tenable Nessus
added 2022/10/11 12:0 a.m.23 views

OracleVM 3.4 : kernel-uek (OVMSA-2022-0026)

The remote OracleVM system is missing necessary patches to address security updates: - The imonprobe function in drivers/media/rc/imon.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service NULL pointer dereference and system crash or possibly have unspecified other...

7.8CVSS7AI score0.02282EPSS
Exploits6References31
Tenable Nessus
Tenable Nessus
added 2022/08/10 12:0 a.m.45 views

OracleVM 3.4 : kernel-uek (OVMSA-2022-0021)

The remote OracleVM system is missing necessary patches to address security updates: - A vulnerability was found in the Linux kernel's cgroupreleaseagentwrite in the kernel/cgroup/cgroup-v1.c function. This flaw, under certain circumstances, allows the use of the cgroups v1 releaseagent feature t...

7.8CVSS6.9AI score0.05528EPSS
Exploits19References7
Tenable Nessus
Tenable Nessus
added 2022/05/04 12:0 a.m.34 views

OracleVM 3.4 : xen (OVMSA-2022-0012)

The remote OracleVM system is missing necessary patches to address security updates: - Racy interactions between dirty vram tracking and paging log dirty hypercalls Activation of log dirty mode done by XENDMOPtrackdirtyvram was named HVMOPtrackdirtyvram before Xen 4.9 is racy with ongoing log dir...

7CVSS6.4AI score0.00248EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2022/04/05 12:0 a.m.29 views

OracleVM 3.4 : cyrus-sasl (OVMSA-2022-0010)

The remote OracleVM system is missing necessary patches to address security updates: - In Cyrus SASL 2.1.17 through 2.1.27 before 2.1.28, plugins/sql.c does not escape the password for a SQL INSERT or UPDATE statement. CVE-2022-24407 Note that Nessus has not tested for this issue but has instead...

8.8CVSS7.7AI score0.04123EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2022/02/17 12:0 a.m.34 views

OracleVM 3.4 : kernel-uek (OVMSA-2022-0007)

The remote OracleVM system is missing necessary patches to address security updates: - Improper access control in BlueZ may allow an authenticated user to potentially enable information disclosure via adjacent access. CVE-2021-0129 - In eploopcheckproc of eventpoll.c, there is a possible way to...

7.9CVSS7.1AI score0.01736EPSS
Exploits2References13
Tenable Nessus
Tenable Nessus
added 2022/01/11 12:0 a.m.36 views

OracleVM 3.4 : xen (OVMSA-2022-0004)

The remote OracleVM system is missing necessary patches to address security updates: - issues with partially successful P2M updates on x86 This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. x86 HVM and PVH guests may be...

8.6CVSS7.5AI score0.0206EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/01/11 12:0 a.m.33 views

OracleVM 3.4 : xen (OVMSA-2022-0003)

The remote OracleVM system is missing necessary patches to address security updates: - An issue was discovered in Xen through 4.9.x allowing HVM guest OS users to cause a denial of service infinite loop and host OS hang by leveraging the mishandling of Populate on Demand PoD errors. CVE-2017-1704...

8.8CVSS7.2AI score0.0206EPSS
Exploits0References11
Rows per page
Query Builder