Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

32 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2020-3151

Malware in sbrugna...

5.1CVSS5.9AI score0.00105EPSS
Exploits0References16
Microsoft CVE
Microsoft CVEadded 2025/09/04 3:28 a.m.2 views

An integer underflow in dpdk versions before 18.11.10 and before 19.11.5 in the `move_desc` function can lead to large amounts of CPU cycles being eaten up in a long running loop. An attacker could cause `move_desc` to get stuck in a 4,294,967,295-count iteration loop. Depending on how `vhost_crypto` is being used this could prevent other VMs or network tasks from being serviced by the busy DPDK lcore for an extended period.

...

3.3CVSS7AI score0.00075EPSS
Exploits0
SUSE CVE
SUSE CVEadded 2023/02/15 4:0 a.m.2 views

SUSE CVE-2020-10724

A vulnerability was found in DPDK versions 18.11 and above. The vhost-crypto library code is missing validations for user-supplied values, potentially allowing an information leak through an out-of-bounds memory read...

5.1CVSS6.9AI score0.00105EPSS
Exploits0References8
SUSE CVE
SUSE CVEadded 2023/02/15 3:57 a.m.1 views

SUSE CVE-2020-14374

A flaw was found in dpdk in versions before 18.11.10 and before 19.11.5. A flawed bounds checking in the copydata function leads to a buffer overflow allowing an attacker in a virtual machine to write arbitrary data to any address in the vhostcrypto application. The highest threat from this...

8.8CVSS7.2AI score0.00159EPSS
Exploits0References9
SUSE CVE
SUSE CVEadded 2023/02/15 3:57 a.m.2 views

SUSE CVE-2020-14378

An integer underflow in dpdk versions before 18.11.10 and before 19.11.5 in the movedesc function can lead to large amounts of CPU cycles being eaten up in a long running loop. An attacker could cause movedesc to get stuck in a 4,294,967,295-count iteration loop. Depending on how vhostcrypto is...

3.8CVSS6.8AI score0.00075EPSS
Exploits0References9
RedHat Linux
RedHat Linuxadded 2021/03/18 1:8 p.m.2 views

dpdk: librte_vhost Missing inputs validation in Vhost-crypto

A vulnerability was found in DPDK versions 18.11 and above. The vhost-crypto library code is missing validations for user-supplied values, potentially allowing an information leak through an out-of-bounds memory read...

5.1CVSS7.2AI score0.00105EPSS
Exploits0References6
Tenable Nessus
Tenable Nessusadded 2020/12/09 12:0 a.m.28 views

SUSE SLES12 Security Update : dpdk (SUSE-SU-2020:2768-1)

This update for dpdk fixes the following issues : dpdk was updated to 18.11.9. For a list of fixes check : CVE-2020-14374,CVE-2020-14375,CVE-2020-14376,CVE-2020-14377,CVE-2020-1 4378: Fixed multiple issues where a malicious guest could harm the host using vhost crypto, including executing code in...

8.8CVSS6.4AI score0.00159EPSS
Exploits0References13
Tenable Nessus
Tenable Nessusadded 2020/12/09 12:0 a.m.25 views

SUSE SLED15 / SLES15 Security Update : dpdk (SUSE-SU-2020:2770-1)

This update for dpdk fixes the following issues : dpdk was updated to 19.11.4 CVE-2020-14374,CVE-2020-14375,CVE-2020-14376,CVE-2020-14377,CVE-2020-1 4378: Fixed multiple issues where a malicious guest could harm the host using vhost crypto, including executing code in host VM Escape, reading host...

8.8CVSS6.4AI score0.00159EPSS
Exploits0References13
Tenable Nessus
Tenable Nessusadded 2020/10/05 12:0 a.m.27 views

openSUSE Security Update : dpdk (openSUSE-2020-1593)

This update for dpdk fixes the following issues : - dpdk was updated to 18.11.9. For a list of fixes check : - CVE-2020-14374,CVE-2020-14375,CVE-2020-14376,CVE-2020-14 377,CVE-2020-14378: Fixed multiple issues where a malicious guest could harm the host using vhost crypto, including executing cod...

8.8CVSS6.3AI score0.00159EPSS
Exploits0References7
Tenable Nessus
Tenable Nessusadded 2020/10/05 12:0 a.m.35 views

openSUSE Security Update : dpdk (openSUSE-2020-1599)

This update for dpdk fixes the following issues : - dpdk was updated to 19.11.4 - CVE-2020-14374,CVE-2020-14375,CVE-2020-14376,CVE-2020-14 377,CVE-2020-14378: Fixed multiple issues where a malicious guest could harm the host using vhost crypto, including executing code in host VM Escape, reading...

8.8CVSS6.3AI score0.00159EPSS
Exploits0References7
OpenVAS
OpenVASadded 2020/10/04 12:0 a.m.21 views

openSUSE: Security Advisory for dpdk (openSUSE-SU-2020:1593-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS6.4AI score0.00159EPSS
Exploits0References2
OSV
OSVadded 2020/09/30 8:15 p.m.1 views

DEBIAN-CVE-2020-14374

A flaw was found in dpdk in versions before 18.11.10 and before 19.11.5. A flawed bounds checking in the copydata function leads to a buffer overflow allowing an attacker in a virtual machine to write arbitrary data to any address in the vhostcrypto application. The highest threat from this...

8.8CVSS8AI score0.00159EPSS
Exploits0References1
OSV
OSVadded 2020/09/30 7:15 p.m.2 views

DEBIAN-CVE-2020-14375

A flaw was found in dpdk in versions before 18.11.10 and before 19.11.5. Virtio ring descriptors, and the data they describe are in a region of memory accessible by from both the virtual machine and the host. An attacker in a VM can change the contents of the memory after vhostcrypto has validate...

7.8CVSS7.2AI score0.00048EPSS
Exploits0References1
Ubuntu
Ubuntuadded 2020/09/28 4:32 p.m.62 views

USN-4550-1: DPDK vulnerabilities

Ryan Hall discovered that DPDK incorrectly handled vhost crypto. An attacker inside a guest could use these issues to perform multiple attacks, including denial of service attacks, obtaining sensitive information from the host, and possibly executing arbitrary code on the host...

8.8CVSS6.9AI score0.00159EPSS
Exploits0
OSV
OSVadded 2020/09/28 4:32 p.m.1 views

USN-4550-1 dpdk vulnerabilities

Ryan Hall discovered that DPDK incorrectly handled vhost crypto. An attacker inside a guest could use these issues to perform multiple attacks, including denial of service attacks, obtaining sensitive information from the host, and possibly executing arbitrary code on the host...

8.8CVSS7.4AI score0.00159EPSS
Exploits0References6
OSV
OSVadded 2020/09/28 3:0 p.m.1 views

UBUNTU-CVE-2020-14375

A flaw was found in dpdk in versions before 18.11.10 and before 19.11.5. Virtio ring descriptors, and the data they describe are in a region of memory accessible by from both the virtual machine and the host. An attacker in a VM can change the contents of the memory after vhostcrypto has validate...

7.8CVSS7AI score0.00048EPSS
Exploits0References3
OSV
OSVadded 2020/09/28 3:0 p.m.0 views

UBUNTU-CVE-2020-14374

A flaw was found in dpdk in versions before 18.11.10 and before 19.11.5. A flawed bounds checking in the copydata function leads to a buffer overflow allowing an attacker in a virtual machine to write arbitrary data to any address in the vhostcrypto application. The highest threat from this...

8.8CVSS7.4AI score0.00159EPSS
Exploits0References3
OSV
OSVadded 2020/09/28 3:0 p.m.0 views

UBUNTU-CVE-2020-14378

An integer underflow in dpdk versions before 18.11.10 and before 19.11.5 in the movedesc function can lead to large amounts of CPU cycles being eaten up in a long running loop. An attacker could cause movedesc to get stuck in a 4,294,967,295-count iteration loop. Depending on how vhostcrypto is...

3.3CVSS7.1AI score0.00075EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2020/05/27 12:0 a.m.36 views

RHEL 8 : openvswitch2.11 (RHSA-2020:2297)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:2297 advisory. Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic...

6.7CVSS6.7AI score0.00105EPSS
Exploits0References10
RedHat Linux
RedHat Linuxadded 2020/05/26 2:39 p.m.5 views

dpdk: librte_vhost Missing inputs validation in Vhost-crypto

A vulnerability was found in DPDK versions 18.11 and above. The vhost-crypto library code is missing validations for user-supplied values, potentially allowing an information leak through an out-of-bounds memory read...

5.1CVSS7.2AI score0.00105EPSS
Exploits0References6
Rows per page
Query Builder