CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

19 matches found

CVE-2026-46316

A flaw was found in the Linux kernel's Kernel-based Virtual Machine KVM for ARM64, specifically within the vgic-its component. This vulnerability occurs when multiple concurrent operations incorrectly drop the translation cache's reference to an entry more than once during cache invalidation. Thi...

7CVSS5.4AI score

Exploits0References4

NVD•added yesterday•4 views

CVE-2026-46316

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-its: Drop the translation cache reference only for the erased entry vgicitsinvalidatecache walks the per-ITS translation cache with xaforeach and drops the cache's reference on each entry with vgicputirq. It puts...

Exploits0References4

Cvelist•added yesterday•9 views

CVE-2026-46316 KVM: arm64: vgic-its: Drop the translation cache reference only for the erased entry

Exploits0References4

EUVD•added yesterday•5 views

EUVD-2026-35405

5.4AI score

Exploits0References4

OSV•added yesterday•2 views

UBUNTU-CVE-2026-46316

KVM: arm64: vgic-its: Drop the translation cache reference only for the erased entry...

5.4AI score

Exploits0References3

Positive Technologies•added yesterday•5 views

PT-2026-47753

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-its: Drop the translation cache reference only for the erased entry vgic its invalidate cache walks the per-ITS translation cache with xa for each and drops the cache's reference on each entry with vgic put irq. ...

5.4AI score

Exploits0References5

AstraLinux•added 2026/05/20 5:53 a.m.•1 views

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-its: Avoid potential UAF in LPI translation cache There is a potential UAF scenario in the case of an LPI translation cache hit racing with an operation that invalidates the cache, such as a DISCARD ITS command...

7.8CVSS6AI score0.00014EPSS

Exploits0References2

Tenable Nessus•added 2024/06/03 12:0 a.m.•64 views

EulerOS 2.0 SP11 : kernel (EulerOS-SA-2024-1800)

"According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-its: Avoid potential UAF in LPI translation cache There is a...

8CVSS7AI score0.84554EPSS

Exploits16References46

OpenVAS•added 2024/05/30 12:0 a.m.•26 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-1735)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8CVSS7.7AI score0.84554EPSS

Exploits16References4

BDU FSTEC•added 2024/03/11 12:0 a.m.•1 views

The vulnerability of the vgic_its_check_cache() function in the arch/arm64/kvm/vgic/vgic-its.c module of the Kernel-based Virtual Machine (KVM) virtualization subsystem of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the vgicitscheckcache function in the arch/arm64/kvm/vgic/vgic-its.c module of the Kernel-based Virtual Machine KVM virtualization subsystem of the Linux operating system is related to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker ...

7.8CVSS6.7AI score0.00014EPSS

Exploits0References29Affected Software5

SUSE CVE•added 2024/02/27 3:54 a.m.•2 views

SUSE CVE-2024-26598

7.8CVSS5.8AI score0.00014EPSS

Exploits0References10

RedhatCVE•added 2024/02/24 11:43 a.m.•26 views

CVE-2024-26598

A flaw was found in the Linux kernel pertaining to a potential use-after-free UAF scenario in a system involving Logical Partitioning Interrupts LPI translation cache operations. Specifically, the issue arises when a cache hit occurs concurrently with an operation that invalidates the cache, such...

7.8CVSS7.3AI score0.00014EPSS

Exploits0References4

NVD•added 2024/02/23 3:15 p.m.•16 views

CVE-2024-26598

7.8CVSS7.4AI score0.00014EPSS

Exploits0References8

OSV•added 2024/02/23 3:15 p.m.•2 views

DEBIAN-CVE-2024-26598

7.8CVSS5.8AI score0.00014EPSS

Exploits0References1

OSV•added 2024/02/23 3:15 p.m.•2 views

UBUNTU-CVE-2024-26598

7.8CVSS6.3AI score0.00014EPSS

Exploits0References22

Prion•added 2024/02/23 3:15 p.m.•23 views

Spoofing

7.4AI score0.00014EPSS

Exploits0References7

CVE•added 2024/02/23 2:46 p.m.•1405 views

CVE-2024-26598

CVE-2024-26598 is a Linux kernel vulnerability affecting KVM on arm64 with vgic-its. The issue is a use-after-free risk in the LPI translation cache: vgic_its_check_cache() drops a lock that serializes refcount changes without first elevating the vgic_irq refcount. If a translation cache hit race...

7.8CVSS7.6AI score0.00014EPSS

Exploits0References8Affected Software1

Vulnrichment•added 2024/02/23 2:46 p.m.•29 views

CVE-2024-26598 KVM: arm64: vgic-its: Avoid potential UAF in LPI translation cache

6.8AI score0.00014EPSS

Exploits0References7

Positive Technologies•added 2024/01/04 12:0 a.m.•5 views

PT-2024-1990 · Linux +6 · Linux Kernel +6

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a potential use-after-free UAF scenario in the Linux kernel's KVM: arm64: vgic-its module. This occurs when an LPI translation cache hit races with an operation...

9.8CVSS6.6AI score0.84554EPSS

Exploits20References961

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by