Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Huawei
Huaweiadded 2020/01/15 12:0 a.m.84 views

Security Advisory - Buffer Overflow Vulnerability in QEMU-KVM

There is a buffer overflow vulnerability in the vhost module of QEMU-KVM. During the hot migration of the target VM, an attacker with guest user account may send descriptors with invalid length to the affected host to exploit this vulnerability. Successfully exploited may cause the kernel buffer...

7.8CVSS7.9AI score0.00071EPSS
Exploits1Affected Software3
Oracle linux
Oracle linuxadded 2019/09/17 12:0 a.m.133 views

Unbreakable Enterprise kernel security update

4.14.35-1902.5.2.1 - vhost: make sure lognum innum yongduan Orabug: 30312787 CVE-2019-14835 - vhost: block speculation of translated descriptors Michael S. Tsirkin Orabug: 30312787 CVE-2019-14835 - vhost: Fix Spectre V1 vulnerability Jason Wang Orabug: 30312787...

7.8CVSS1.6AI score0.00071EPSS
Exploits1
Veracode
Veracodeadded 2019/05/02 4:52 a.m.36 views

Privilege Escalation

kernel is vulnerable to privilege escalation. A flaw was found in the way the vhost kernel module handled descriptors that spanned multiple regions. A privileged guest user in a KVM guest could use this flaw to crash the host or, potentially, escalate their privileges on the host...

6.5CVSS6AI score0.00293EPSS
Exploits0References120Affected Software1
OSV
OSVadded 2014/03/14 3:55 p.m.1 views

DEBIAN-CVE-2014-2324

Multiple directory traversal vulnerabilities in 1 modevhost and 2 modsimplevhost in lighttpd before 1.4.35 allow remote attackers to read arbitrary files via a .. dot dot in the host name, related to requestcheckhostname...

5CVSS9.3AI score0.7167EPSS
Exploits2References1
Tenable Nessus
Tenable Nessusadded 2013/07/12 12:0 a.m.41 views

Oracle Linux 6 : qemu-kvm (ELSA-2011-0919)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2011-0919 advisory. qemu-kvm-0.12.1.2-2.160.el61.2 - kvm-virtio-guard-against-negative-vq-notifies.patch bz717403 - Resolves: bz717403 qemu-kvm: OOB memory access caused b...

7.4CVSS5.9AI score0.00785EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2013/01/24 12:0 a.m.33 views

RHEL 6 : qemu-kvm (RHSA-2011:0919)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2011:0919 advisory. KVM Kernel-based Virtual Machine is a full virtualization solution for Linux on AMD64 and Intel 64 systems. qemu-kvm is the user-space...

7.4CVSS6AI score0.00785EPSS
Exploits0References6
OpenVAS
OpenVASadded 2012/06/06 12:0 a.m.28 views

RedHat Update for qemu-kvm RHSA-2011:0919-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

7.4CVSS6.5AI score0.00785EPSS
Exploits0References2
RedHat Linux
RedHat Linuxadded 2011/07/05 6:5 p.m.24 views

Important: Red Hat Security Advisory: qemu-kvm security and bug fix update

Updated qemu-kvm packages that fix two security issues and one bug are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

7.4CVSS6AI score0.00785EPSS
Exploits0References3
Rows per page
Query Builder