CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

17 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-16136

Malicious code in bioql PyPI...

5.5CVSS7AI score0.00006EPSS

Exploits0References10

RedHat Linux•added 2025/05/14 12:44 a.m.•1 views

kernel: Information disclosure in vhost/vhost.c:vhost_new_msg()

A vulnerability was found in vhostnewmsg in drivers/vhost/vhost.c in the Linux kernel, which does not properly initialize memory in messages passed between virtual guests and the host operating system in the vhost/vhost.c:vhostnewmsg function. This issue can allow local privileged users to read...

5.5CVSS6.6AI score0.00006EPSS

Exploits0References5

RedHat Linux•added 2024/06/05 10:5 a.m.•1 views

kernel: Information disclosure in vhost/vhost.c:vhost_new_msg()

5.5CVSS6.6AI score0.00006EPSS

Exploits0References5

SUSE CVE•added 2024/01/11 2:37 a.m.•1 views

SUSE CVE-2024-0340

3.3CVSS6.2AI score0.00006EPSS

Exploits0References12

OSV•added 2024/01/09 6:15 p.m.•4 views

AZL-33319 CVE-2024-0340 affecting package kernel for versions less than 5.15.153.1-1

5.5CVSS6.6AI score0.00006EPSS

Exploits0References1

OSV•added 2024/01/09 6:15 p.m.•1 views

DEBIAN-CVE-2024-0340

5.5CVSS5.9AI score0.00006EPSS

Exploits0References1

NVD•added 2024/01/09 6:15 p.m.•18 views

CVE-2024-0340

5.5CVSS5.4AI score0.00006EPSS

Exploits0References9

OSV•added 2024/01/09 6:15 p.m.•7 views

CVE-2024-0340

5.5CVSS7.4AI score0.00006EPSS

Exploits0References9

OSV•added 2024/01/09 6:15 p.m.•0 views

UBUNTU-CVE-2024-0340

5.5CVSS6.5AI score0.00006EPSS

Exploits0References17

UbuntuCve•added 2024/01/09 6:15 p.m.•44 views

CVE-2024-0340

5.5CVSS6.7AI score0.00006EPSS

Exploits0References16

CVE•added 2024/01/09 5:36 p.m.•348 views

CVE-2024-0340

CVE-2024-0340 is confirmed in the Linux kernel, affecting the vhost_new_msg path in drivers/vhost/vhost.c. The issue arises from memory not being properly initialized when building messages exchanged between virtual guests and the host via /dev/vhost-net, enabling local privileged users to read k...

5.5CVSS4.8AI score0.00006EPSS

Exploits0References9Affected Software1

RedhatCVE•added 2024/01/09 12:31 p.m.•32 views

CVE-2024-0340

4.4CVSS5.8AI score0.00006EPSS

Exploits0References4

Veracode•added 2020/11/05 3:9 a.m.•55 views

Denial Of Service (DoS)

kernel is vulnerable to denial of service DoS.Lack of validation in getrawsocket in drivers/vhost/net.c of an skfamily field allows to attacker perform ioctl2 calls on the '/dev/vhost-net' device may use this flaw to crash the kernel...

5.3CVSS3.3AI score0.00073EPSS

Exploits1References18Affected Software2

RedHat Linux•added 2020/11/04 12:53 a.m.•2 views

kernel: vhost-net: stack overflow in get_raw_socket while checking sk_family field

A stack buffer overflow issue was found in the getrawsocket routine of the Host kernel accelerator for virtio net vhost-net driver. It could occur while doing an ictolVHOSTNETSETBACKEND call, and retrieving socket name in a kernel stack variable via getrawsocket. A user able to perform ioctl2 cal...

5.4CVSS7AI score0.00073EPSS

Exploits1References4

RedhatCVE•added 2020/01/13 9:32 p.m.•35 views

CVE-2018-1118

The Linux kernel does not properly initialize memory in messages passed between virtual guests and the host operating system in the vhost/vhost.c:vhostnewmsg function. This can allow local privileged users to read some kernel memory contents when reading from the /dev/vhost-net device file...

5.5CVSS5AI score0.00108EPSS

Exploits0References1

RedHat Linux•added 2018/10/30 12:31 p.m.•2 views

kernel: vhost: Information disclosure in vhost/vhost.c:vhost_new_msg()

5.5CVSS7.1AI score0.00108EPSS

Exploits0References4

RedHat Linux•added 2018/10/30 10:4 a.m.•3 views

kernel: vhost: Information disclosure in vhost/vhost.c:vhost_new_msg()

5.5CVSS7.1AI score0.00108EPSS

Exploits0References4

Rows per page