Lucene search
K

4461 matches found

Tenable Nessus
Tenable Nessus
added 2025/11/18 12:0 a.m.2 views

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-46738)

VMCI: use-after-free when removing resource in vmciresourceremove. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504738; scriptversion"1.3";...

7.8CVSS6.7AI score0.00276EPSS
Exploits0References4
OSV
OSV
added 2025/11/17 7:11 p.m.3 views

GO-2025-4104 KubeVirt Excessive Role Permissions Could Enable Unauthorized VMI Migrations Between Nodes in github.com/kubevirt/kubevirt

KubeVirt Excessive Role Permissions Could Enable Unauthorized VMI Migrations Between Nodes in github.com/kubevirt/kubevirt. NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions. If this is causing false-positi...

6.9CVSS6.8AI score0.00231EPSS
Exploits1References2
OSV
OSV
added 2025/11/17 7:11 p.m.3 views

GO-2025-4105 KubeVirt VMI Denial-of-Service (DoS) Using Pod Impersonation in kubevirt.io/kubevirt

KubeVirt VMI Denial-of-Service DoS Using Pod Impersonation in kubevirt.io/kubevirt...

5.3CVSS6.9AI score0.00315EPSS
Exploits1References3
NVD
NVD
added 2025/11/17 6:15 p.m.7 views

CVE-2025-58407

Kernel or driver software installed on a Guest VM may post improper commands to the GPU Firmware to exploit a TOCTOU race condition and trigger a read and/or write of data outside the allotted memory escaping the virtual machine...

7.4CVSS0.00172EPSS
Exploits0References1
OSV
OSV
added 2025/11/17 6:15 p.m.3 views

CVE-2025-58407

Kernel or driver software installed on a Guest VM may post improper commands to the GPU Firmware to exploit a TOCTOU race condition and trigger a read and/or write of data outside the allotted memory escaping the virtual machine...

7.4CVSS5.8AI score0.00172EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/17 5:18 p.m.7 views

CVE-2025-58407 GPU DDK - TOCTOU bug affecting psFWMemContext->uiPageCatBaseRegSet

Kernel or driver software installed on a Guest VM may post improper commands to the GPU Firmware to exploit a TOCTOU race condition and trigger a read and/or write of data outside the allotted memory escaping the virtual machine...

0.00172EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/17 5:18 p.m.7 views

CVE-2025-58407 GPU DDK - TOCTOU bug affecting psFWMemContext->uiPageCatBaseRegSet

Kernel or driver software installed on a Guest VM may post improper commands to the GPU Firmware to exploit a TOCTOU race condition and trigger a read and/or write of data outside the allotted memory escaping the virtual machine...

6.6AI score0.00172EPSS
Exploits0References1
CVE
CVE
added 2025/11/17 5:18 p.m.17 views

CVE-2025-58407

CVE-2025-58407 concerns Imagination Technologies GPU DDK/driver software used in a Guest VM. The vulnerability is a TOCTOU race in the GPU firmware interaction (psFWMemContext->uiPageCatBaseRegSet) that could allow reading and/or writing data outside the allotted memory, enabling escape from t...

7.4CVSS6.6AI score0.00172EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/11/17 12:0 a.m.4 views

Imagination Graphics DDK 安全漏洞

Imagination Graphics DDK is a suite of GPU driver tools from Imagination UK. A security vulnerability exists in the Imagination Graphics DDK that stems from a TOCTOU contention condition that could result in out-of-virtual-machine memory reads and writes...

7.4CVSS6.7AI score0.00172EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/11/17 12:0 a.m.6 views

PT-2025-47174

Name of the Vulnerable Software and Affected Versions versions prior to 2025 Description Kernel or driver software installed on a Guest VM may post improper commands to the GPU Firmware, potentially exploiting a TOCTOU race condition. This could lead to a read and/or write of data outside the...

7.4CVSS6.5AI score0.00172EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2025/11/14 1:3 a.m.5 views

KVM: VMX: Do _all_ initialization before exposing /dev/kvm to userspace

...

5.5CVSS5.5AI score0.00169EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2025/11/14 12:24 a.m.6 views

SUSE CVE-2025-40184

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Fix debug checking for np-guests using huge mappings When running with transparent huge pages and CONFIGNVHEEL2DEBUG then the debug checking in asserthostsharedguest fails on the launch of an np-guest. This WARNON...

6.5AI score0.00162EPSS
Exploits0References3
Ubuntu
Ubuntu
added 2025/11/13 2:47 p.m.5 views

USN-7862-3: Linux kernel (Xilinx ZynqMP) vulnerability

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

5.5CVSS7.4AI score0.00331EPSS
Exploits0
Ubuntu
Ubuntu
added 2025/11/13 2:33 p.m.8 views

USN-7861-3: Linux kernel vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

7.8CVSS7.4AI score0.01345EPSS
Exploits8
Microsoft CVE
Microsoft CVE
added 2025/11/13 9:1 a.m.6 views

drm/vmwgfx: Fix a null-ptr access in the cursor snooper

...

4.1CVSS7AI score0.00167EPSS
Exploits0
OSV
OSV
added 2025/11/12 10:15 p.m.3 views

DEBIAN-CVE-2025-40184

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Fix debug checking for np-guests using huge mappings When running with transparent huge pages and CONFIGNVHEEL2DEBUG then the debug checking in asserthostsharedguest fails on the launch of an np-guest. This WARNON...

5.2AI score0.00162EPSS
Exploits0References1
OSV
OSV
added 2025/11/12 10:15 p.m.5 views

UBUNTU-CVE-2025-40181

In the Linux kernel, the following vulnerability has been resolved: x86/kvm: Force legacy PCI hole to UC when overriding MTRRs for TDX/SNP When running as an SNP or TDX guest under KVM, force the legacy PCI hole, i.e. memory between Top of Lower Usable DRAM and 4GiB, to be mapped as UC via a forc...

5.7AI score0.00172EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2025/11/12 12:41 p.m.3 views

kernel: x86/vmscape: Add conditional IBPB mitigation

In the Linux kernel, the following vulnerability has been resolved: x86/vmscape: Add conditional IBPB mitigation VMSCAPE is a vulnerability that exploits insufficient branch predictor isolation between a guest and a userspace hypervisor like QEMU. Existing mitigations already protect kernel/KVM...

5.5CVSS5.7AI score0.00331EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/11/12 12:0 a.m.1 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990811)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990811 advisory. In the Linux kernel, the following vulnerability has been resolved: misc/vmwvmci: fix an infoleak in vmcihostdoreceivedatagram struct vmcieventqp allocated by...

5.5CVSS6.2AI score0.0018EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/11/11 7:59 p.m.4 views

CVE-2025-64436

KubeVirt is a virtual machine management add-on for Kubernetes. In 1.5.0 and earlier, the permissions granted to the virt-handler service account, such as the ability to update VMI and patch nodes, could be abused to force a VMI migration to an attacker-controlled node. This vulnerability could...

6.9CVSS5AI score0.00231EPSS
Exploits1References4
Rows per page
Query Builder