Lucene search
+L

17 matches found

susecve
susecve
added 2026/05/15 1:58 a.m.24 views

SUSE CVE-2026-43483

In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Set/clear CR8 write interception when AVIC is deactivated Explicitly set/clear CR8 write interception when AVIC is deactivated to fix a bug where KVM leaves the interception enabled after AVIC is activated. E.g. if KVM...

5.5CVSS5.7AI score0.00114EPSS
Exploits0References12
cve
cve
added 2026/05/13 3:8 p.m.33 views

CVE-2026-43483

CVE-2026-43483 (Linux kernel, KVM/VMX-SVM) fixes a flaw in SVM AVIC handling where CR8 write interception could remain enabled after AVIC activation. The patch explicitly sets/clears CR8 interception when AVIC is (de)activated to prevent the dangling intercept, which could cause TPR desynchroniza...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References6Affected Software1
cvelist
cvelist
added 2026/05/13 3:8 p.m.65 views

CVE-2026-43483 KVM: SVM: Set/clear CR8 write interception when AVIC is (de)activated

In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Set/clear CR8 write interception when AVIC is deactivated Explicitly set/clear CR8 write interception when AVIC is deactivated to fix a bug where KVM leaves the interception enabled after AVIC is activated. E.g. if KVM...

0.00114EPSS
Exploits0References6
nessus
nessus
added 2026/05/13 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-43483

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - KVM: SVM: Set/clear CR8 write interception when AVIC is deactivated Explicitly set/clear CR8 write interception when AVIC is deactivated to fix a bug where KVM...

5.5CVSS6.6AI score0.00114EPSS
Exploits0References4
euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-3012

Malware in sbrugna...

5.5CVSS6.7AI score0.00433EPSS
Exploits0References16
ripstech
ripstech
added 2020/03/10 12:0 p.m.49 views

RIPS Scores a Perfect 100% at OWASP Benchmark

Comparing different SAST solutions with one another is no trivial task. Indeed, beyond some straightforward criteria such as a tools speed, usability, or integration options, the quintessential question is: How well does it perform in detecting actual vulnerabilities in your code? Benchmark Metri...

7.1AI score
Exploits0
openvas
openvas
added 2020/01/23 12:0 a.m.40 views

Huawei EulerOS: Security Advisory for qemu-kvm (EulerOS-SA-2017-1224)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.8AI score0.04028EPSS
Exploits0References2
vulnersosv
vulnersosv
added 2019/02/18 11:57 p.m.7 views

scalajs-standalone-bin (>=0.1.0 <=0.4.3), tpr (>=0.2.0 <=0.2.2) potentially affected by CVE-2016-10627 via scala-bin (>=0.2.1 <=0.3.3)

scala-bin NPM version =0.2.1, =0.1.0, =0.2.0, =0.2.2 Source cves: CVE-2016-10627 Source advisory: OSV:GHSA-3VV5-42WR-M32G...

9.3CVSS7.2AI score0.01752EPSS
Exploits0
vulnersosv
vulnersosv
added 2019/02/18 11:47 p.m.4 views

tpr (>=0.2.0 <=0.2.2) potentially affected by CVE-2016-10634 via scalajs-standalone-bin (=0.4.3)

scalajs-standalone-bin NPM version =0.4.3 is affected by a known vulnerability. The following packages have a transitive dependency on scalajs-standalone-bin and may be impacted: - tpr =0.2.0, =0.2.2 Source cves: CVE-2016-10634 Source advisory: OSV:GHSA-CVX3-PQMJ-X57X...

9.3CVSS7.2AI score0.01752EPSS
Exploits0
osv
osv
added 2017/09/26 5:29 a.m.1 views

DEBIAN-CVE-2017-12154

The preparevmcs02 function in arch/x86/kvm/vmx.c in the Linux kernel through 4.13.3 does not ensure that the "CR8-load exiting" and "CR8-store exiting" L0 vmcs02 controls exist in cases where L1 omits the "use TPR shadow" vmcs12 control, which allows KVM L2 guest OS users to obtain read and write...

7.1CVSS7.5AI score0.00512EPSS
Exploits0References1
osv
osv
added 2016/12/29 10:59 p.m.36 views

CVE-2016-1922

QEMU aka Quick Emulator built with the TPR optimization for 32-bit Windows guests support is vulnerable to a null pointer dereference flaw. It occurs while doing I/O port write operations via hmp interface. In that, 'currentcpu' remains null, which leads to the null pointer dereference. A user or...

5.5CVSS6.4AI score
Exploits0References9
prion
prion
added 2016/12/29 10:59 p.m.18 views

Null pointer dereference

QEMU aka Quick Emulator built with the TPR optimization for 32-bit Windows guests support is vulnerable to a null pointer dereference flaw. It occurs while doing I/O port write operations via hmp interface. In that, 'currentcpu' remains null, which leads to the null pointer dereference. A user or...

2.1CVSS6.6AI score0.00433EPSS
Exploits0References9Affected Software2
debiancve
debiancve
added 2016/12/29 10:0 p.m.46 views

CVE-2016-1922

QEMU aka Quick Emulator built with the TPR optimization for 32-bit Windows guests support is vulnerable to a null pointer dereference flaw. It occurs while doing I/O port write operations via hmp interface. In that, 'currentcpu' remains null, which leads to the null pointer dereference. A user or...

5.5CVSS6.7AI score0.00433EPSS
Exploits0
nessus
nessus
added 2016/08/29 12:0 a.m.34 views

SUSE SLED12 / SLES12 Security Update : qemu (SUSE-SU-2016:1703-1)

qemu was updated to fix 29 security issues. These security issues were fixed : - CVE-2016-4439: Avoid OOB access in 53C9X emulation bsc980711 - CVE-2016-4441: Avoid OOB access in 53C9X emulation bsc980723 - CVE-2016-4952: Avoid OOB access in Vmware PV SCSI emulation bsc981266 - CVE-2015-8817: Avo...

9.8CVSS6.9AI score0.06336EPSS
Exploits2References99
opensuse
opensuse
added 2016/07/06 10:4 p.m.76 views

Security update for qemu (important)

qemu was updated to fix 29 security issues. These security issues were fixed: - CVE-2016-4439: Avoid OOB access in 53C9X emulation bsc980711 - CVE-2016-4441: Avoid OOB access in 53C9X emulation bsc980723 - CVE-2016-4952: Avoid OOB access in Vmware PV SCSI emulation bsc981266 - CVE-2015-8817: Avoi...

9.3CVSS1.7AI score0.06336EPSS
Exploits2References34
nessus
nessus
added 2016/06/17 12:0 a.m.239 views

SUSE SLED12 / SLES12 Security Update : qemu (SUSE-SU-2016:1560-1)

qemu was updated to fix 37 security issues. These security issues were fixed : - CVE-2016-4439: Avoid OOB access in 53C9X emulation bsc980711 - CVE-2016-4441: Avoid OOB access in 53C9X emulation bsc980723 - CVE-2016-4952: Avoid OOB access in Vmware PV SCSI emulation bsc981266 - CVE-2015-8817: Avo...

9.8CVSS6.5AI score0.06336EPSS
Exploits4References114
nvd
nvd
added 2016/05/25 3:59 p.m.27 views

CVE-2016-4020

The patchinstruction function in hw/i386/kvmvapic.c in QEMU does not initialize the imm32 variable, which allows local guest OS administrators to obtain sensitive information from host stack memory by accessing the Task Priority Register TPR...

6.5CVSS6.1AI score0.00372EPSS
Exploits0References11
Rows per page
Query Builder