12996 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-12154
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The preparevmcs02 function in arch/x86/kvm/vmx.c in the Linux kernel through 4.13.3 does not ensure that the CR8-load exiting and CR8-store exiting L0 vmcs02...
Linux Distros Unpatched Vulnerability : CVE-2021-47112
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - x86/kvm: Teardown PV features on boot CPU as well Various PV features Async PF, PV EOI, steal time work through memory shared with hypervisor and when we restor...
Linux Distros Unpatched Vulnerability : CVE-2020-27673
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the Linux kernel through 5.9.1, as used with Xen through 4.14.x. Guest OS users can cause a denial of service host OS hang via a high...
KB5063875: Windows 11 version 22H2 / Windows 11 version 23H2 Security Update (August 2025)
The remote Windows host is missing security update 5063875. It is, therefore, affected by multiple vulnerabilities - Heap-based buffer overflow in Windows GDI+ allows an unauthorized attacker to execute code over a network. CVE-2025-53766 - Missing synchronization in Windows Hyper-V allows an...
KB5063871: Windows 10 Version 1607 / Windows Server 2016 Security Update (August 2025)
The remote Windows host is missing security update 5063871. It is, therefore, affected by multiple vulnerabilities - Heap-based buffer overflow in Windows GDI+ allows an unauthorized attacker to execute code over a network. CVE-2025-53766 - Missing synchronization in Windows Hyper-V allows an...
Linux Distros Unpatched Vulnerability : CVE-2022-42260
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NVIDIA vGPU Display Driver for Linux guest contains a vulnerability in a D-Bus configuration file, where an unauthorized user in the guest VM can impact protect...
Voltage Fault Injection on SEV Virtual Machines
Summary Researchers shared with AMD a report titled “Voltage Fault Injection on SEV-protected Virtual Machines.” The report noted a Voltage Fault Injection VFI attack targeting AMD EPYC™ 7272 CPUs running Secure Encrypted Virtualization SEV protected virtual machines VMs. Physical attacks such as...
Linux Distros Unpatched Vulnerability : CVE-2021-47228
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - x86/ioremap: Map EFI-reserved memory as encrypted for SEV Some drivers require memory that is marked as EFI boot services data. In order for this memory to not ...
Linux Distros Unpatched Vulnerability : CVE-2020-2732
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was discovered in the way that the KVM hypervisor handled instruction emulation for an L2 guest when nested virtualisation is enabled. Under some...
Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2025-20521)
The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-20521 advisory. - perf: Fix perfeventvalidatesize lockdep splat Mark Rutland Orabug: 36261486 CVE-2023-6931 - perf: Fix perfeventvalidatesize Peter Zijlstra Orabu...
Linux Distros Unpatched Vulnerability : CVE-2024-21263
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 7.0.22 and prior t...
Linux Distros Unpatched Vulnerability : CVE-2022-45869
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A race condition in the x86 KVM subsystem in the Linux kernel through 6.1-rc6 allows guest OS users to cause a denial of service host OS crash or host OS memory...
Oracle Linux 8 / 9 : Unbreakable Enterprise kernel (ELSA-2025-20520)
The remote Oracle Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-20520 advisory. - perf: Fix perfeventvalidatesize lockdep splat Mark Rutland Orabug: 36261485 CVE-2023-6931 - perf: Fix perfeventvalidatesize Peter Zijlstra Orabu...
Unbreakable Enterprise kernel security update
5.15.0-311.185.9 - nfs: ignore SBRDONLY when remounting nfs Li Lingfeng Orabug: 37781252 5.15.0-311.185.8 - net/mlx5: Add poll-eq API to be used by ULP's Praveen Kumar Kannoju Orabug: 38182400 - net/rds: poll eq during user-reset Praveen Kumar Kannoju Orabug: 38189328 5.15.0-311.185.7 - perf: Fix...
Linux Distros Unpatched Vulnerability : CVE-2024-35804
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Mark target gfn of emulated atomic instruction as dirty When emulating an atomic...
Linux Distros Unpatched Vulnerability : CVE-2022-23042
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Linux PV device frontends vulnerable to attacks by backends This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilitie...
Linux Distros Unpatched Vulnerability : CVE-2018-10853
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the way Linux kernel KVM hypervisor before 4.18 emulated instructions such as sgdt/sidt/fxsave/fxrstor. It did not check current privilegeCP...
Linux Distros Unpatched Vulnerability : CVE-2025-21839
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - KVM: x86: Load DR6 with guest value only before entering .vcpurun loop Move the conditional loading of hardware DR6 with the guest's DR6 value out of the core...
Linux Distros Unpatched Vulnerability : CVE-2024-21253
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 7.0.22. Easily...
Linux Distros Unpatched Vulnerability : CVE-2021-47110
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - x86/kvm: Disable kvmclock on all CPUs on shutdown Currenly, we disable kvmclock from machineshutdown hook and this only happens for boot CPU. We need to disable...