CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

65 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: swiotlb – fixing an issue where information leaks due to DMA FROMDEVICE. The problem I’m addressing was discovered through the LTP test covering cve-2018-1000204. A brief description of what happens is as follows: 1 The test case...

5.5CVSS6AI score0.0002EPSS

Exploits0References2

Amazon•added 2026/05/14 12:0 a.m.•6 views

Medium: qemu

Issue Overview: hcd-ohci: infinite loop NOTE: Fixed by: https://gitlab.com/qemu-project/qemu/-/commit/129922c2bc398b656a9180150e667f98fdf0d402 v11.0.0-rc1 CVE-2026-3890 virtio-scsi request size mismatch NOTE: Fixed by:...

7.1AI score

Exploits0

UbuntuCve•added 2026/04/23 12:0 a.m.•0 views

CVE-2026-5763

virtio-scsi request size mismatch...

5.7AI score

Exploits0References1

OSV•added 2026/04/23 12:0 a.m.•0 views

UBUNTU-CVE-2026-5763

virtio-scsi request size mismatch...

5.2AI score

Exploits0References2

OSV•added 2026/03/11 6:1 p.m.•2 views

RLSA-2023:5264 Important: virt:rhel and virt-devel:rhel security and bug fix update

Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the...

7.5CVSS7.9AI score0.00125EPSS

Exploits0References3

OpenVAS•added 2026/02/02 12:0 a.m.•1 views

Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2026-1195)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.4AI score0.00053EPSS

Exploits0References2

Tenable Nessus•added 2026/01/16 12:0 a.m.•2 views

MiracleLinux 4 : qemu-kvm-0.12.1.2-2.415.AXS4.14 (AXSA:2014-502:05)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2014-502:05 advisory. Description : KVM for Kernel-based Virtual Machine is a full virtualization solution for Linux on x86 hardware. Using KVM, one can run multiple virtu...

7.5CVSS6.8AI score0.01003EPSS

Exploits2References3

AstraLinux•added 2026/01/13 2:1 p.m.•2 views

Astra Linux - уязвимость в qemu

A flaw was found in QEMU, in the virtio-scsi, virtio-blk, and virtio-crypto devices. The size for virtqueuepush as set in virtioscsicompletereq / virtioblkreqcomplete / viritocryptoreqcomplete could be larger than the true size of the data which has been sent to guest. Once virtqueuepush finally...

3.8CVSS5.7AI score0.00053EPSS

Exploits0References3

Tenable Nessus•added 2025/10/07 12:0 a.m.•0 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986751)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986751 advisory. In the Linux kernel, the following vulnerability has been resolved: swiotlb: fix info leak with DMAFROMDEVICE The problem I'm addressing was discovered by the LTP te...

6.3CVSS6.4AI score0.00132EPSS

Exploits0References4

Tenable Nessus•added 2025/10/07 12:0 a.m.•1 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986477)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986477 advisory. In the Linux kernel, the following vulnerability has been resolved: swiotlb: fix info leak with DMAFROMDEVICE The problem I'm addressing was discovered by the LTP te...

6.3CVSS6.4AI score0.00132EPSS

Exploits0References3

Zero Day Initiative•added 2025/07/29 12:0 a.m.•6 views

Oracle VirtualBox VirtIO-SCSI Uninitialized Memory Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of Oracle VirtualBox. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within...

5.3CVSS6.1AI score0.00089EPSS

Exploits0References1

Virtuozzo•added 2025/03/18 12:0 a.m.•13 views

Virtuozzo Hybrid Server 7.5 Update 7 Hotfix 3 (7.5.7-176)

The Hotfix 3 for Virtuozzo Hybrid Server 7.5 Update 7 provides fixes for the c2v-convert tool and VirtIO SCSI controllers. Vulnerability id: PSBM-160763 Fixed an issue where the c2v-convert tool failed to convert a container if one of its disks did not have a mount point specified in the source...

7.3AI score

Exploits0

Tenable Nessus•added 2024/09/27 12:0 a.m.•21 views

QEMU 7.2.x < 7.2.15, 8.0.x < 8.0.6, 8.1.x < 8.1.6, 8.2.x < 8.2.8, 9.0.x < 9.0.4, 9.1.x < 9.1.1 Information Leak

The version of QEMU installed on the remote Windows host is prior to 8.2.1 and therefore vulnerable to the following: A flaw was found in QEMU, in the virtio-scsi, virtio-blk, and virtio-crypto devices. The size for virtqueuepush as set in virtioscsicompletereq / virtioblkreqcomplete /...

3.8CVSS6.1AI score0.00053EPSS

Exploits0References3