CVE-2025-40804

A vulnerability has been identified in SIMATIC Virtualization as a Service SIVaaS All versions. The affected application exposes a network share without any authentication. This could allow an attacker to access or alter sensitive data without proper authorization...

Windows Hyper-V Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Hyper-V allows an authorized attacker to elevate privileges locally...

PT-2025-36687

Name of the Vulnerable Software and Affected Versions: SIMATIC Virtualization as a Service SIVaaS affected versions not specified Description: The affected application exposes a network share without any authentication. This could allow an attacker to access or alter sensitive data without proper...

Siemens SIMATIC Virtualization as a Service 安全漏洞

Siemens SIMATIC Virtualization as a Service SIVaaS is an automation virtual machine from Siemens, Germany. A security vulnerability exists in Siemens SIMATIC Virtualization as a Service that originates from an unauthenticated network share, which could lead to unauthorized data access or...

RLSA-2025:12527 Moderate: virt:rhel and virt-devel:rhel security update

Kernel-based Virtual Machine KVM offers a full virtualization solution forLinux on numerous hardware platforms. The virt:rhel module contains packageswhich provide user-space components used to run virtual machines using KVM.The packages also provide APIs for managing and interacting with the...

virt:rhel and virt-devel:rhel security update

An update is available for module.libguestfs-winsupport, libvirt, module.supermin, netcf, perl-Sys-Virt, libguestfs-winsupport, module.perl-Sys-Virt, module.libtpms, qemu-kvm, module.nbdkit, seabios, libvirt-python, nbdkit, module.netcf, libnbd, libguestfs, module.libvirt-python, supermin,...

Unbreakable Enterprise kernel security update

5.15.0-312.187.5 - Revert 'mm: hugetlb: independent PMD page table shared count' Harshit Mogalapalli Orabug: 38327655 5.15.0-312.187.4 - rds: Fix NULL ptr deref in xasstart Hakon Bugge Orabug: 38166374 - KVM: x86: use arrayindexnospec with indices that come from guest Thijs Raymakers Orabug:...

gve: prevent ethtool ops after shutdown

...

CVE-2024-36331

Improper initialization of CPU cache memory could allow a privileged attacker with hypervisor access to overwrite SEV-SNP guest memory resulting in loss of data integrity...

CVE-2024-36331

CVE-2024-36331 is an issue in the Linux kernel affecting SEV-SNP memory integrity when a privileged attacker with hypervisor access can exploit improper CPU cache initialization to overwrite guest memory. Public sources in connected docs (Ubuntu USN advisories USN-7880-1, USN-7879-1, USN-7934-1; ...

CVE-2024-36331

Improper initialization of CPU cache memory could allow a privileged attacker with hypervisor access to overwrite SEV-SNP guest memory resulting in loss of data integrity...

CVE-2025-39704

In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Fix stack protector issue in sendipidata Function kvmiobusread is called in function sendipidata, buffer size of parameter val should be at least 8 bytes. Since some emulation functions like loongarchipireadl and...

UBUNTU-CVE-2025-39704

In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Fix stack protector issue in sendipidata Function kvmiobusread is called in function sendipidata, buffer size of parameter val should be at least 8 bytes. Since some emulation functions like loongarchipireadl and...

CVE-2024-21977

Incomplete cleanup after loading a CPU microcode patch may allow a privileged attacker to degrade the entropy of the RDRAND instruction, potentially resulting in loss of integrity for SEV-SNP guests...

CVE-2024-21977

CVE-2024-21977 describes an AMD SEV-SNP-related issue where incomplete cleanup after loading a CPU microcode patch may degrade RDRAND entropy, potentially impacting integrity for SEV-SNP guests. Connected sources confirm this affects AMD EPYC/SEV-SNP platform components (IOMMU, SEV-SNP) and note ...

PT-2025-46751

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the Linux kernel related to the cpufreq subsystem and intel pstate driver. Specifically, a problem with object lifecycle management within the update qos request...

Virtualized (In)Security: How Attackers Can Weaponize VBS Enclaves

Read about Ori David’s presentation at DEF CON 33 and learn how attackers can abuse VBS enclaves, a Windows security feature, for malicious purposes...

Qemu-kvm: information leak in virtio devices

...

KVM: x86/hyper-v: Skip non-canonical addresses during PV TLB flush

...

KVM: s390: vsie: fix race during shadow creation

...