CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

19 matches found

RedHat Linux•added 2026/05/20 2:0 p.m.•4 views

kernel: Linux kernel KVM: Privilege escalation or denial of service due to improper shadow page table entry handling

A flaw was found in the Linux kernel's Kernel-based Virtual Machine KVM component. A local attacker with privileges on the host system could exploit a vulnerability in how KVM handles shadow page table entries SPTEs during memory-mapped I/O MMIO operations. By manipulating guest page table entrie...

5.5CVSS5.8AI score0.00011EPSS

Exploits0References5

Tenable Nessus•added 2026/05/05 12:0 a.m.•8 views

Amazon Linux 2023 : bpftool6.12, kernel6.12, kernel6.12-devel (ALAS2023-2026-1646)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1646 advisory. In the Linux kernel, the following vulnerability has been resolved: landlock: Fix handling of disconnected directories CVE-2025-68736 In the Linux kernel, the following vulnerability has been...

9.8CVSS5.9AI score0.00116EPSS

Exploits2References122

AstraLinux•added 2026/05/03 11:59 p.m.•7 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: KVM: x86/mmu: The existing SPTE is preserved even when creating an MMIO SPTE. When installing an emulated MMIO SPTE, do so after preserving the existing SPTE if it is shadow-present. However, the fix proposed in commit 54aa15c6bd...

5.5CVSS5.8AI score0.00011EPSS

Exploits0References1

Tenable Nessus•added 2026/04/16 12:0 a.m.•3 views

Oracle Linux 10 / 9 : Unbreakable Enterprise kernel (ELSA-2026-50232)

The remote Oracle Linux 10 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-50232 advisory. - ipv6: use RCU in ip6xmit Eric Dumazet Orabug: 39202432 CVE-2025-40135 - dst: fix races in rt6uncachedlistdel and rtdeluncachedlist Eric Dumazet...

9.8CVSS6.6AI score0.00765EPSS

Exploits1References109

NVD•added 2026/04/01 9:16 a.m.•3 views

CVE-2026-23402

In the Linux kernel, the following vulnerability has been resolved: KVM: x86/mmu: Only WARN in direct MMUs when overwriting shadow-present SPTE Adjust KVM's sanity check against overwriting a shadow-present SPTE with a another SPTE with a different target PFN to only apply to direct MMUs, i.e. on...

5.5CVSS0.00007EPSS

Exploits0References3

NVD•added 2026/04/01 9:16 a.m.•0 views

CVE-2026-23401

In the Linux kernel, the following vulnerability has been resolved: KVM: x86/mmu: Drop/zap existing present SPTE even when creating an MMIO SPTE When installing an emulated MMIO SPTE, do so after dropping/zapping the existing SPTE if it's shadow-present. While commit a54aa15c6bda3 was right about...

5.5CVSS0.00011EPSS

Exploits0References7

UbuntuCve•added 2026/04/01 9:16 a.m.•4 views

CVE-2026-23402

5.5CVSS5.7AI score0.00007EPSS

Exploits0References3

ATTACKERKB•added 2026/04/01 8:36 a.m.•2 views

CVE-2026-23402

5.7AI score0.00007EPSS

Exploits0References4Affected Software1

Cvelist•added 2026/04/01 8:36 a.m.•31 views

CVE-2026-23402 KVM: x86/mmu: Only WARN in direct MMUs when overwriting shadow-present SPTE

0.00007EPSS

Exploits0References3

ATTACKERKB•added 2026/04/01 8:36 a.m.•1 views

CVE-2026-23401

5.7AI score0.00011EPSS

Exploits0References8Affected Software1

OSV•added 2025/06/18 11:15 a.m.•2 views

AZL-70468 CVE-2022-50224 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: KVM: x86/mmu: Treat NX as a valid SPTE bit for NPT Treat the NX bit as valid when using NPT, as KVM will set the NX bit when the NX huge page mitigation is enabled mindblowing and trigger the WARN that fires on reserved SPTE bits...

5.5CVSS5.6AI score0.00074EPSS

Exploits0References1

OSV•added 2025/06/18 11:15 a.m.•1 views

UBUNTU-CVE-2022-50224

5.5CVSS5.7AI score0.00074EPSS

Exploits0References4

Cvelist•added 2025/06/18 11:3 a.m.•5 views

CVE-2022-50224 KVM: x86/mmu: Treat NX as a valid SPTE bit for NPT

0.00074EPSS

Exploits0References2

Debian CVE•added 2025/06/18 11:3 a.m.•6 views

CVE-2022-50224

5.5CVSS5.2AI score0.00074EPSS

Exploits0

OSV•added 2025/06/18 11:3 a.m.•2 views

CVE-2022-50224 KVM: x86/mmu: Treat NX as a valid SPTE bit for NPT

5.5CVSS6.1AI score0.00074EPSS

Exploits0References5

UbuntuCve•added 2024/03/04 6:15 p.m.•13 views

CVE-2021-47094

In the Linux kernel, the following vulnerability has been resolved: KVM: x86/mmu: Don't advance iterator after restart due to yielding After dropping mmulock in the TDP MMU, restart the iterator during tdpiternext and do not advance the iterator. Advancing the iterator results in skipping the...

7.1CVSS6.4AI score0.00015EPSS

Exploits0References4

RedHat Linux•added 2023/05/09 10:4 a.m.•0 views

kernel: KVM: x86/mmu: Treat NX as a valid SPTE bit for NPT

5.5CVSS5.7AI score0.00074EPSS

Exploits0References5

OSV•added 2022/09/16 11:52 p.m.•14 views

GSD-2022-1005371 KVM: x86/mmu: Treat NX as a valid SPTE bit for NPT

KVM: x86/mmu: Treat NX as a valid SPTE bit for NPT This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.2 by commit...

7.2AI score

Exploits0

Positive Technologies•added 2022/07/28 12:0 a.m.•3 views

PT-2025-26150

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been resolved, related to KVM: x86/mmu, where the NX bit is treated as valid when using NPT. This issue occurs when the NX huge page mitigation is...

5.5CVSS5.4AI score0.00074EPSS

Exploits0References30

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by