CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12996 matches found

OSV•added 2025/01/21 2:8 p.m.•4 views

CLSA-2025-1737468474 kernel: Fix of 4 CVEs

media: edia: dvbdev: fix a use-after-free CVE-2024-27043 - btrfs: dev-replace: properly validate device names CVE-2024-26791 - KVM: nSVM: Ignore nCR34:0 when loading PDPTEs from memory CVE-2024-50115 - net/sched: stop qdisctreereducebacklog on TCHROOT CVE-2024-53057 - ipc/sem.c: bugfix for...

7.8CVSS6.8AI score0.00292EPSS

Exploits0References1

CNNVD•added 2025/01/21 12:0 a.m.•3 views

Oracle Virtualization 安全漏洞

Oracle Virtualization is a suite of virtualization solutions from Oracle Corporation USA. The product is used to unify the management of the entire hardware and software architecture from applications to disk, enabling virtualization from the desktop to the data center.VM VirtualBox is one of the...

7.3CVSS8.3AI score0.00282EPSS

Exploits0References2

CNNVD•added 2025/01/21 12:0 a.m.•3 views

Oracle Virtualization 安全漏洞

5.5CVSS8.8AI score0.00292EPSS

Exploits0References2

SUSE Linux•added 2025/01/17 9:13 p.m.•4 views

Security update for the Linux Kernel (Live Patch 49 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-15030059179 fixes several issues. The following security issues were fixed: CVE-2024-50264: vsock/virtio: Initialization of the dangling pointer occurring in vsk-trans bsc1233712. CVE-2022-48956: ipv6: avoid use-after-free in ip6fragment bsc1232637. Patch...

7.8CVSS8.2AI score0.00352EPSS

Exploits1References8

BDU FSTEC•added 2025/01/15 12:0 a.m.•7 views

The vulnerability of the VSP Elevation function in the hardware virtualization technology of Windows Hyper-V operating systems allows attackers to elevate their privileges to the SYSTEM level.

The vulnerability of the VSP Elevation function in the hardware virtualization layer of Windows Hyper-V operating systems involves the possibility of exploiting memory after it is freed. Exploiting this vulnerability can allow an attacker to elevate their privileges to the SYSTEM level...

7.8CVSS7.8AI score0.01363EPSS

Exploits0References2

BDU FSTEC•added 2025/01/15 12:0 a.m.•7 views

The vulnerability of the VSP Elevation function in the hardware virtualization technology of Windows Hyper-V operating systems allows attackers to elevate their privileges to the SYSTEM level.

7.8CVSS7.8AI score0.0153EPSS

Exploits0References2

SUSE Linux•added 2025/01/14 7:4 p.m.•1 views

Security update for the Linux Kernel (Live Patch 24 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-15040024111 fixes several issues. The following security issues were fixed: CVE-2024-50264: vsock/virtio: Initialization of the dangling pointer occurring in vsk-trans bsc1233712. CVE-2022-48956: ipv6: avoid use-after-free in ip6fragment bsc1232637...

7.8CVSS8.7AI score0.00767EPSS

Exploits2References126

OSV•added 2025/01/14 6:16 p.m.•2 views

CVE-2025-21370

Windows Virtualization-Based Security VBS Enclave Elevation of Privilege Vulnerability...

8.8CVSS7.3AI score0.00465EPSS

Exploits0References1

NVD•added 2025/01/14 6:16 p.m.•9 views

CVE-2025-21370

Windows Virtualization-Based Security VBS Enclave Elevation of Privilege Vulnerability...

8.8CVSS0.00465EPSS

Exploits0References1

OSV•added 2025/01/14 6:15 p.m.•2 views

CVE-2025-21340

Windows Virtualization-Based Security VBS Security Feature Bypass Vulnerability...

5.5CVSS7.3AI score0.00443EPSS

Exploits0References1

NVD•added 2025/01/14 6:15 p.m.•15 views

CVE-2025-21340

Windows Virtualization-Based Security VBS Security Feature Bypass Vulnerability...

5.5CVSS0.00443EPSS

Exploits0References1

OSV•added 2025/01/14 6:15 p.m.•1 views

CVE-2025-21334

Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability...

7.8CVSS7.4AI score0.0153EPSS

Exploits0References2

Cvelist•added 2025/01/14 6:4 p.m.•16 views

CVE-2025-21370 Windows Virtualization-Based Security (VBS) Enclave Elevation of Privilege Vulnerability

...

7.8CVSS0.00465EPSS

Exploits0References1

Vulnrichment•added 2025/01/14 6:4 p.m.•10 views

CVE-2025-21370 Windows Virtualization-Based Security (VBS) Enclave Elevation of Privilege Vulnerability

...

7.8CVSS7.7AI score0.00465EPSS

Exploits0References1

CVE•added 2025/01/14 6:4 p.m.•104 views

CVE-2025-21370

CVE-2025-21370 is a Windows VBS Enclave Elevation of Privilege vulnerability. Public sources describe an input-validation error in the VBS Enclave that can allow privilege escalation on Windows 11 variants (22H2/23H2/24H2). Exploitation is reported publicly, and Microsoft has released updates (e....

8.8CVSS7.7AI score0.00465EPSS

Exploits0References1Affected Software3

Cvelist•added 2025/01/14 6:4 p.m.•18 views

CVE-2025-21340 Windows Virtualization-Based Security (VBS) Security Feature Bypass Vulnerability

...

5.5CVSS0.00443EPSS

Exploits0References1

Vulnrichment•added 2025/01/14 6:4 p.m.•24 views

CVE-2025-21340 Windows Virtualization-Based Security (VBS) Security Feature Bypass Vulnerability

...

5.5CVSS5.6AI score0.00443EPSS

Exploits0References1

CVE•added 2025/01/14 6:4 p.m.•132 views

CVE-2025-21340

Technical details about CVE-2025-21340 are not provided in the supplied Connected documents. The entry concerns Windows VBS security feature bypass; no affected products/versions or patch specifics are disclosed here. Monitor for updates from Microsoft.

5.5CVSS5.5AI score0.00443EPSS

Exploits0References1Affected Software10