Lucene search
K

291 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-19196

Malware in sbrugna...

5.3CVSS5.7AI score0.01609EPSS
Exploits1References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2021-13212

Malware in sbrugna...

7.5CVSS7.4AI score0.00416EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.4 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414510)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414510 advisory. A flaw was found in the Linux kernel. The existing KVM SEV API has a vulnerability that allows a non-root host user-level application to crash the host kernel by...

5.5CVSS6.4AI score0.00288EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-15379

Malicious code in bioql PyPI...

5.5CVSS6.8AI score0.00288EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2021-33979

Malicious code in bioql PyPI...

8.8CVSS7.2AI score0.00419EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.11 views

EUVD-2023-54035

Malicious code in bioql PyPI...

5.6CVSS6.8AI score0.00159EPSS
Exploits0References2
The Hacker News
The Hacker News
added 2025/09/30 6:42 p.m.13 views

New $50 Battering RAM Attack Breaks Intel and AMD Cloud Security Protections

A group of academics from KU Leuven and the University of Birmingham has demonstrated a new vulnerability called Battering RAM to bypass the latest defenses on Intel and AMD cloud processors. "We built a simple, $50 interposer that sits quietly in the memory path, behaving transparently during...

6.3AI score0.00331EPSS
Exploits0
Amd
Amd
added 2025/09/30 12:0 a.m.9 views

SEV-SNP Physical Memory Aliasing

Summary Researchers have reported a method for privileged attackers with physical access to a motherboard to potentially compromise confidentiality and integrity of AMD Secure Encrypted Virtualization – Secure Nesting Paging SEV-SNP guests. AMD does not plan to release any mitigations in response...

6.5AI score
Exploits0
NVD
NVD
added 2025/09/06 6:15 p.m.6 views

CVE-2024-36331

Improper initialization of CPU cache memory could allow a privileged attacker with hypervisor access to overwrite SEV-SNP guest memory resulting in loss of data integrity...

3.2CVSS0.00144EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2025/09/06 5:29 p.m.17 views

CVE-2024-36331

Improper initialization of CPU cache memory could allow a privileged attacker with hypervisor access to overwrite SEV-SNP guest memory resulting in loss of data integrity...

3.2CVSS4.5AI score0.00144EPSS
Exploits0
CVE
CVE
added 2025/09/05 12:58 p.m.17 views

CVE-2024-21977

CVE-2024-21977 describes an AMD SEV-SNP-related issue where incomplete cleanup after loading a CPU microcode patch may degrade RDRAND entropy, potentially impacting integrity for SEV-SNP guests. Connected sources confirm this affects AMD EPYC/SEV-SNP platform components (IOMMU, SEV-SNP) and note ...

3.2CVSS6.2AI score0.0014EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/09/05 12:58 p.m.10 views

CVE-2024-21977

Incomplete cleanup after loading a CPU microcode patch may allow a privileged attacker to degrade the entropy of the RDRAND instruction, potentially resulting in loss of integrity for SEV-SNP guests...

3.2CVSS0.0014EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/08/18 11:27 a.m.6 views

CVE-2025-38506

In the Linux kernel, the following vulnerability has been resolved: KVM: Allow CPU to reschedule while setting per-page memory attributes When running an SEV-SNP guest with a sufficiently large amount of memory 1TB+, the host can experience CPU soft lockups when running an operation in...

5.5CVSS6.9AI score0.00106EPSS
Exploits0References4
NVD
NVD
added 2025/08/16 11:15 a.m.6 views

CVE-2025-38506

In the Linux kernel, the following vulnerability has been resolved: KVM: Allow CPU to reschedule while setting per-page memory attributes When running an SEV-SNP guest with a sufficiently large amount of memory 1TB+, the host can experience CPU soft lockups when running an operation in...

5.5CVSS0.00106EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2025/08/16 10:54 a.m.5 views

CVE-2025-38508

In the Linux kernel, the following vulnerability has been resolved: x86/sev: Use TSCFACTOR for Secure TSC frequency calculation When using Secure TSC, the GUESTTSCFREQ MSR reports a frequency based on the nominal P0 frequency, which deviates slightly typically 0.2% from the actual mean TSC...

5.5CVSS5.3AI score0.00119EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/08/16 10:54 a.m.3 views

CVE-2025-38506

In the Linux kernel, the following vulnerability has been resolved: KVM: Allow CPU to reschedule while setting per-page memory attributes When running an SEV-SNP guest with a sufficiently large amount of memory 1TB+, the host can experience CPU soft lockups when running an operation in...

5.5CVSS5.3AI score0.00106EPSS
Exploits0
Packet Storm News
Packet Storm News
added 2025/08/13 12:0 a.m.21 views

Heracles: Chosen Plaintext Attack on AMD SEV-SNP

A whitepaper discussing an attack on AMD SEV-SNP called Heracles that was able to leak kernel memory, crypto keys, and user passwords, as well as demonstrate web session hijacking...

6.8AI score
Exploits0
Amd
Amd
added 2025/08/12 12:0 a.m.11 views

AMD Server Vulnerabilities – August 2025

Summary Potential vulnerabilities in AMD EPYC™ Processor platforms that affect IOMMU, AMD Secure Encrypted Virtualization – Secure Nested Paging SEV-SNP and other platform components, were found during audits performed internally and by third parties. Mitigations have been provided in AMD EPYC™...

7.5CVSS7.5AI score0.00154EPSS
Exploits0
Amd
Amd
added 2025/08/12 12:0 a.m.11 views

Voltage Fault Injection on SEV Virtual Machines

Summary Researchers shared with AMD a report titled “Voltage Fault Injection on SEV-protected Virtual Machines.” The report noted a Voltage Fault Injection VFI attack targeting AMD EPYC™ 7272 CPUs running Secure Encrypted Virtualization SEV protected virtual machines VMs. Physical attacks such as...

7.3AI score
Exploits0
Amd
Amd
added 2025/08/12 12:0 a.m.19 views

SEV Ciphertext Side Channel Attacks

Summary AMD has received reports from two research groups detailing methods by which a malicious hypervisor could potentially execute a side channel attack against a running secure encrypted virtualization – secure nested paging SEV-SNP guest. The first report, titled “Relocate + Vote: Exploiting...

7.3AI score
Exploits0
Rows per page
Query Builder