CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNNVD•added 2024/10/15 12:0 a.m.•4 views

Oracle Virtualization 安全漏洞

5.3CVSS7.9AI score0.00224EPSS

CNNVD•added 2024/10/15 12:0 a.m.•4 views

Oracle Virtualization 安全漏洞

6CVSS8.1AI score0.005EPSS

CNNVD•added 2024/10/15 12:0 a.m.•6 views

Oracle Virtualization 安全漏洞

7.5CVSS8.1AI score0.00267EPSS

BDU FSTEC•added 2024/10/14 12:0 a.m.•7 views

The vulnerability of the Hyper-V hardware virtualization system for Windows operating systems allows a perpetrator to trigger a service failure.

The vulnerability of the Hyper-V hardware virtualization technology for Windows operating systems relates to the unrestricted and unregulated distribution of resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

7.8CVSS5.5AI score0.02279EPSS

Positive Technologies•added 2024/10/14 12:0 a.m.•5 views

PT-2024-6934 · Kubernetes +1 · Kubernetes Image Builder +1

Name of the Vulnerable Software and Affected Versions: Kubernetes Image Builder versions = v0.1.37 Description: A security issue was discovered in the Kubernetes Image Builder where default credentials are enabled during the image build process when using certain providers, such as Nutanix, OVA,...

9.9CVSS6.3AI score0.97781EPSS

Exploits21References151

CNVD•added 2024/10/13 12:0 a.m.•9 views

Microsoft Windows Hyper-V Denial of Service Vulnerability (CNVD-2024-40542)

Microsoft Windows Hyper-V is a tool from Microsoft USA that provides hardware virtualization. A denial of service vulnerability exists in Microsoft Windows Hyper-V, which can be exploited by attackers to cause a denial of service...

7.5CVSS6.4AI score0.02279EPSS

CNVD•added 2024/10/13 12:0 a.m.•5 views

Microsoft Windows Hyper-V Remote Code Execution Vulnerability (CNVD-2024-40540)

Microsoft Windows Hyper-V is a tool from Microsoft USA that provides hardware virtualization. A remote code execution vulnerability exists in Microsoft Windows Hyper-V, which can be exploited by an attacker to perform remote execution...

8CVSS7.4AI score0.00659EPSS

CNVD•added 2024/10/13 12:0 a.m.•5 views

Microsoft Windows Hyper-V Denial of Service Vulnerability (CNVD-2024-40539)

7.5CVSS6.4AI score0.02414EPSS

Microsoft CVE•added 2024/10/12 7:0 a.m.•5 views

KVM: arm64: Make ICC_*SGI*_EL1 undef in the absence of a vGICv3

...

5.5CVSS6.7AI score0.00232EPSS

VulnCheck KEV•added 2024/10/11 12:0 a.m.•5 views

VulnCheck KEV: CVE-2024-22255

VMware ESXi, Workstation, and Fusion contain an information disclosure vulnerability in the UHCI USB controller. A malicious actor with administrative access to a virtual machine may be able to exploit this issue to leak memory from the vmx process...

7.1CVSS5.8AI score0.02311EPSS

BDU FSTEC•added 2024/10/11 12:0 a.m.•4 views

The vulnerability of the Windows Hyper-V hardware virtualization system allows a perpetrator to execute arbitrary code.

The vulnerability of the Windows Hyper-V hardware virtualization system is related to the activation of functions from an unverified and uncontrolled area. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

8CVSS5.9AI score0.00659EPSS

CNNVD•added 2024/10/08 12:0 a.m.•4 views

Microsoft Hyper-V 安全漏洞

8CVSS8.1AI score0.00659EPSS

Rosalinux•added 2024/10/03 10:37 p.m.•23 views

Advisory ROSA-SA-2024-2506

Software: python-jinja2 2.10.1 OS: ROSA Virtualization 2.1 packageevrstring: python-jinja2-2.10.1-5.rv3 CVE-ID: CVE-2020-28493 BDU-ID: 2022-05230 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the Python programming language interpreter html-template tool jinja2 is related to incorrect resource...

6.1CVSS6.3AI score0.00979EPSS

Rosalinux•added 2024/10/03 10:33 p.m.•18 views

Advisory ROSA-SA-2024-2505

SOFTWARE: 389-ds-base 1.4.3.8 OS: ROSA Virtualization 2.1 packageevrstring: 389-ds-base-1.4.3.8-5.0.2.rv3 CVE-ID: CVE-2020-35518 BDU-ID: 2023-02645 CVE-Crit: MEDIUM CVE-DESC.: A 389 Directory Server authentication vulnerability involves information disclosure when verifying the existence of a...

5.3CVSS6.8AI score0.01538EPSS

Rosalinux•added 2024/10/03 10:31 p.m.•23 views

Advisory ROSA-SA-2024-2504

Software: iperf3 3.5 OS: ROSA Virtualization 2.1 packageevrstring: iperf3-3.5-10.rv3 CVE-ID: CVE-2023-38403 BDU-ID: 2023-03980 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the Iperf3 network bandwidth measurement tool is related to integer overflow during field length processing. Exploitation of...

7.5CVSS7.3AI score0.01703EPSS

Rosalinux•added 2024/10/03 10:28 p.m.•18 views

Advisory ROSA-SA-2024-2503

Software: wget 1.19.5 OS: ROSA Virtualization 2.1 packageevrstring: wget-1.19.5-12.rv3 CVE-ID: CVE-2024-38428 BDU-ID: 2024-04683 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the userinfo URI component of the GNU Wget download manager is related to insecure behavior in which data that should hav...

9.1CVSS6.9AI score0.00672EPSS

Rosalinux•added 2024/10/03 10:26 p.m.•13 views

Advisory ROSA-SA-2024-2502

Software: libndp 1.7 OS: ROSA Virtualization 2.1 packageevrstring: libndp-1.7-7.rv3 CVE-ID: CVE-2024-5564 BDU-ID: 2024-04337 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the libndp library is related to an operation exceeding buffer boundaries in memory. Exploitation of the vulnerability could...

8.1CVSS8.2AI score0.01165EPSS