CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

104 matches found

OSV•added 2015/03/04 8:47 a.m.•1 views

USN-2516-3 linux vulnerabilities

USN-2516-1 fixed vulnerabilities in the Linux kernel, and the fix in USN-2516-2 was incomplete. There was an unrelated regression in the use of the virtual counter CNTVCT on arm64 architectures. This update fixes the problem. We apologize for the inconvenience. Original advisory details: A flaw w...

6.2AI score

Exploits0References2

NVD•added 2015/03/02 11:59 a.m.•20 views

CVE-2015-0239

The emsysenter function in arch/x86/kvm/emulate.c in the Linux kernel before 3.18.5, when the guest OS lacks SYSENTER MSR initialization, allows guest OS users to gain guest OS privileges or cause a denial of service guest OS crash by triggering use of a 16-bit code segment for emulation of a...

4.4CVSS6.3AI score0.00101EPSS

Exploits1References18

OSV•added 2015/03/02 11:59 a.m.•5 views

CVE-2015-0239

6.1AI score

Exploits0References22

OSV•added 2015/03/02 11:59 a.m.•1 views

DEBIAN-CVE-2015-0239

4.4CVSS7.8AI score0.00101EPSS

Exploits1References1

Cvelist•added 2015/03/02 11:0 a.m.•23 views

CVE-2015-0239

5.8AI score0.00101EPSS

Exploits1References18

OSV•added 2015/02/26 11:22 a.m.•2 views

USN-2516-1 linux vulnerabilities

A flaw was discovered in the Kernel Virtual Machine's KVM emulation of the SYSTENTER instruction when the guest OS does not initialize the SYSENTER MSRs. A guest OS user could exploit this flaw to cause a denial of service of the guest OS crash or potentially gain privileges on the guest OS...

7.8CVSS7AI score0.02949EPSS

Exploits4References13

OpenVAS•added 2015/02/23 12:0 a.m.•47 views

Debian Security Advisory DSA 3170-1 (linux - security update)

Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service, information leaks or privilege escalation. CVE-2013-7421 / CVE-2014-9644 It was discovered that the Crypto API allowed unprivileged users to load arbitrary kernel modules. A local user can use...

10CVSS0.5AI score0.1713EPSS

Exploits7References1

Positive Technologies•added 2015/01/23 12:0 a.m.•5 views

PT-2015-4535 · Linux +4 · Linux Kernel +4

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.18.5 Description: The issue allows guest OS users to gain guest OS privileges or cause a denial of service guest OS crash by triggering use of a 16-bit code segment for emulation of a SYSENTER instruction,...

10CVSS7.8AI score0.18308EPSS

Exploits59References506

UbuntuCve•added 2015/01/23 12:0 a.m.•23 views

CVE-2015-0239

4.4CVSS6.8AI score0.00101EPSS

Exploits1References7

OSV•added 2015/01/23 12:0 a.m.•0 views

UBUNTU-CVE-2015-0239

4.4CVSS6.8AI score0.00101EPSS

Exploits1References8

Tenable Nessus•added 2014/11/26 12:0 a.m.•40 views

OracleVM 3.1 : xen (OVMSA-2012-0021)

The remote OracleVM system is missing necessary patches to address critical security updates : - x86-64: detect processors subject to AMD erratum 121 and refuse to bootCVE-2006-0744 - guest denial of service on syscall/sysenter exception generation CVE-2012-0217,CVE-2012-0218 - Remove unnecessary...

7.2CVSS8.2AI score0.88004EPSS

Exploits6References4

seebug.org•added 2013/08/05 12:0 a.m.•17 views

Linux Kernel 'MSR' Driver Local Privilege Escalation

No description provided by source. // PoC exploit for /dev/cpu//msr, 32bit userland on a 64bit host // can do whatever in the commented area, re-enable module support, etc // requires CONFIGX86MSR and just uid 0 // a small race exists between the time when the MSR is written to the first // time...

7.1AI score

Exploits0

NVD•added 2013/05/13 11:55 p.m.•21 views

CVE-2013-1917

Xen 3.1 through 4.x, when running 64-bit hosts on Intel CPUs, does not clear the NT flag when using an IRET after a SYSENTER instruction, which allows PV guest users to cause a denial of service hypervisor crash by triggering a GP fault, which is not properly handled by another IRET instruction...

1.9CVSS6.2AI score0.00074EPSS

Exploits0References10

OSV•added 2013/05/13 11:55 p.m.•1 views

DEBIAN-CVE-2013-1917

1.9CVSS8.1AI score0.00074EPSS

Exploits0References1

UbuntuCve•added 2013/05/13 11:55 p.m.•29 views

CVE-2013-1917

1.9CVSS7.2AI score0.00074EPSS

Exploits0References2

Prion•added 2013/05/13 11:55 p.m.•22 views

Information disclosure

1.9CVSS6.7AI score0.00074EPSS

Exploits0References10Affected Software1

CVE•added 2013/05/13 11:0 p.m.•87 views

CVE-2013-1917

CVE-2013-1917 affects Xen 3.1 through 4.x on 64-bit Intel-hosted systems, where improper NT flag handling after a SYSENTER/IRET sequence can allow a local PV guest to trigger a #GP fault and crash the hypervisor. The linked SUSE advisories (e.g., SUSE-SU-2014:0411-1) enumerate this CVE among Xen-...

1.9CVSS3.9AI score0.00074EPSS

Exploits0References10Affected Software1

Cvelist•added 2013/05/13 11:0 p.m.•26 views

CVE-2013-1917

3.7AI score0.00074EPSS

Exploits0References10

Debian CVE•added 2013/05/13 11:0 p.m.•25 views

CVE-2013-1917

1.9CVSS4.5AI score0.00074EPSS

Exploits0

Tenable Nessus•added 2013/04/19 12:0 a.m.•32 views

Debian DSA-2662-1 : xen - several vulnerabilities

Multiple vulnerabilities have been discovered in the Xen hypervisor. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2013-1917 The SYSENTER instruction can be used by PV guests to accelerate system call processing. This instruction, however, leaves the...

4.7CVSS7.7AI score0.00096EPSS

Exploits0References6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by