Lucene search
K

141 matches found

Patchstack
Patchstack
added 2025/01/16 6:41 p.m.4 views

WordPress Pit Login Welcome plugin <= 1.1.5 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara Kinorth in WordPress Plugin Pit Login Welcome versions = 1.1.5...

7.1CVSS6.1AI score0.0026EPSS
Exploits0Affected Software1
Vulnrichment
Vulnrichment
added 2024/10/21 6:1 p.m.13 views

CVE-2024-49927 x86/ioapic: Handle allocation failures gracefully

In the Linux kernel, the following vulnerability has been resolved: x86/ioapic: Handle allocation failures gracefully Breno observed panics when using failslab under certain conditions during runtime: can not alloc irqpinlist -1,0,20 Kernel panic - not syncing: IO-APIC: failed to add irq-pin. Can...

7.1AI score0.00236EPSS
Exploits0References6
Openbugbounty
Openbugbounty
added 2023/10/10 10:8 a.m.15 views

pit-ves.ru Cross Site Scripting vulnerability OBB-3739195

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.27 views

Debian: Security Advisory (DSA-2010-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS7AI score0.02718EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 6:0 a.m.3 views

SUSE CVE-2010-0309

The pitioportread function in the Programmable Interval Timer PIT emulation in i8254.c in KVM 83 does not properly use the pitstate data structure, which allows guest OS users to cause a denial of service host OS crash or hang by attempting to read the /dev/port file...

6.8CVSS6.7AI score0.02718EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/15 5:28 a.m.4 views

SUSE CVE-2014-3611

Race condition in the kvmmigratepittimer function in arch/x86/kvm/i8254.c in the KVM subsystem in the Linux kernel through 3.17.2 allows guest OS users to cause a denial of service host OS crash by leveraging incorrect PIT emulation...

4.7CVSS6.4AI score0.00294EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 5:19 a.m.4 views

SUSE CVE-2015-3214

The pitioportread in i8254.c in the Linux kernel before 2.6.33 and QEMU before 2.3.1 does not distinguish between read lengths and write lengths, which might allow guest OS users to execute arbitrary code on the host OS by triggering use of an invalid index...

6.9CVSS7.6AI score0.01594EPSS
Exploits1References7
SUSE CVE
SUSE CVE
added 2023/02/15 5:14 a.m.4 views

SUSE CVE-2015-7513

arch/x86/kvm/x86.c in the Linux kernel before 4.4 does not reset the PIT counter values during state restoration, which allows guest OS users to cause a denial of service divide-by-zero error and host OS crash via a zero value, related to the kvmvmioctlsetpit and kvmvmioctlsetpit2 functions...

6.5CVSS6.4AI score0.00563EPSS
Exploits0References10
Schneier on Security
Schneier on Security
added 2022/12/02 10:12 p.m.21 views

Friday Squid Blogging: Legend of the Indiana Oil-Pit Squid

At a GMC plant. As usual, you can also use this squid post to talk about the security stories in the news that I havent covered. Read my blog posting guidelines here...

1.9AI score
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/09/25 7:0 a.m.5 views

The pit_ioport_read function in the Programmable Interval Timer (PIT) emulation in i8254.c in KVM 83 does not properly use the pit_state data structure which allows guest OS users to cause a denial of service (host OS crash or hang) by attempting to read the /dev/port file.

...

6.8CVSS7AI score0.02718EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2019/05/13 12:0 a.m.30 views

EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1480)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the way the Linux kernel's futex subsystem handled the requeuing of certain Priority Inheritance PI futexes. ...

7.8CVSS7.3AI score0.37233EPSS
Exploits28References22
Lenovo
Lenovo
added 2017/01/23 12:0 a.m.80 views

QEMU i8254 PIT Emulation Bug

Lenovo Security Advisory: LEN-2015-075 Potential Impact: Escalation of Privileges Severity: High Summary: A vulnerability was reported in QEMU where a local user on the guest system could potentially obtain elevated privileges on the target host system. This vulnerability was reported to Red Hat...

6.9CVSS6.6AI score0.01594EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2016/12/05 12:0 a.m.309 views

SUSE SLES11 Security Update : kernel (SUSE-SU-2016:2976-1)

The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security and bugfixes. For the PowerPC64 a new 'bigmem' flavor has been added to support big Power machines. FATE319026 The following security bugs were fixed : - CVE-2016-7042: The prockeysshow function in security/keys/proc....

10CVSS7.3AI score0.24299EPSS
Exploits9References127
OSV
OSV
added 2016/02/08 3:59 a.m.5 views

CVE-2015-7513

arch/x86/kvm/x86.c in the Linux kernel before 4.4 does not reset the PIT counter values during state restoration, which allows guest OS users to cause a denial of service divide-by-zero error and host OS crash via a zero value, related to the kvmvmioctlsetpit and kvmvmioctlsetpit2 functions...

6.5CVSS7.1AI score
Exploits0References25
OSV
OSV
added 2016/02/08 3:59 a.m.2 views

DEBIAN-CVE-2015-7513

arch/x86/kvm/x86.c in the Linux kernel before 4.4 does not reset the PIT counter values during state restoration, which allows guest OS users to cause a denial of service divide-by-zero error and host OS crash via a zero value, related to the kvmvmioctlsetpit and kvmvmioctlsetpit2 functions...

6.5CVSS6.2AI score0.00563EPSS
Exploits0References1
NVD
NVD
added 2016/02/08 3:59 a.m.22 views

CVE-2015-7513

arch/x86/kvm/x86.c in the Linux kernel before 4.4 does not reset the PIT counter values during state restoration, which allows guest OS users to cause a denial of service divide-by-zero error and host OS crash via a zero value, related to the kvmvmioctlsetpit and kvmvmioctlsetpit2 functions...

6.5CVSS6AI score0.00563EPSS
Exploits0References19
Cvelist
Cvelist
added 2016/02/08 2:0 a.m.33 views

CVE-2015-7513

arch/x86/kvm/x86.c in the Linux kernel before 4.4 does not reset the PIT counter values during state restoration, which allows guest OS users to cause a denial of service divide-by-zero error and host OS crash via a zero value, related to the kvmvmioctlsetpit and kvmvmioctlsetpit2 functions...

6.4AI score0.00563EPSS
Exploits0References19
Debian CVE
Debian CVE
added 2016/02/08 2:0 a.m.44 views

CVE-2015-7513

arch/x86/kvm/x86.c in the Linux kernel before 4.4 does not reset the PIT counter values during state restoration, which allows guest OS users to cause a denial of service divide-by-zero error and host OS crash via a zero value, related to the kvmvmioctlsetpit and kvmvmioctlsetpit2 functions...

6.5CVSS5.9AI score0.00563EPSS
Exploits0
OpenVAS
OpenVAS
added 2016/02/05 12:0 a.m.45 views

Ubuntu: Security Advisory (USN-2889-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.2AI score0.09235EPSS
Exploits1References2
Ubuntu
Ubuntu
added 2016/02/02 1:41 a.m.86 views

USN-2888-1: Linux kernel (Utopic HWE) vulnerabilities

It was discovered that a use-after-free vulnerability existed in the AFUNIX implementation in the Linux kernel. A local attacker could use crafted epollctl calls to cause a denial of service system crash or expose sensitive information. CVE-2013-7446 It was discovered that the KVM implementation ...

7CVSS6.3AI score0.0122EPSS
Exploits1
Rows per page
Query Builder