13006 matches found
Patch Tuesday - August 2024
Microsoft is addressing 88 vulnerabilities this August 2024 Patch Tuesday. Microsoft has evidence of in-the-wild exploitation and/or public disclosure for ten of the vulnerabilities published today, which is significantly more than usual. At time of writing, all six of the known-exploited...
Talos discovers Microsoft kernel mode driver vulnerabilities that could lead to SYSTEM privileges; Seven other critical issues disclosed
Microsoft disclosed six security vulnerabilities that are actively being exploited across its products as part of the companys regular Patch Tuesday security update. In all, Augusts monthly round of patches from Microsoft included 87 vulnerabilities, seven of which are considered critical. In...
CVE-2024-38160
Windows Network Virtualization Remote Code Execution Vulnerability...
CVE-2024-38160
Windows Network Virtualization Remote Code Execution Vulnerability...
CVE-2024-38159
Windows Network Virtualization Remote Code Execution Vulnerability...
CVE-2024-38159
Windows Network Virtualization Remote Code Execution Vulnerability...
CVE-2024-38160 Windows Network Virtualization Remote Code Execution Vulnerability
...
CVE-2024-38160
Technical details for CVE-2024-38160 are not publicly available in the provided documents. No concrete product/version/impact/fix information is given here. Monitor for updates from official advisories.
CVE-2024-38160 Windows Network Virtualization Remote Code Execution Vulnerability
...
CVE-2024-38159 Windows Network Virtualization Remote Code Execution Vulnerability
...
CVE-2024-38159 Windows Network Virtualization Remote Code Execution Vulnerability
...
CVE-2024-38159
CVE-2024-38159 affects Windows Network Virtualization. The vulnerability enables remote code execution over the network with high privileges required and no user interaction, reflected by CVSSv3.1: AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H (base 9.1). Microsoft and partners indicate updates exist to fi...
DEBIAN-CVE-2023-20584
IOMMU improperly handles certain special address ranges with invalid device table entries DTEs, which may allow an attacker with privileges and a compromised Hypervisor to induce DTE faults to bypass RMP checks in SEV-SNP, potentially leading to a loss of guest integrity...
CVE-2023-20513
An insufficient bounds check in PMFW Power Management Firmware may allow an attacker to utilize a malicious VF virtualization function to send a malformed message, potentially resulting in a denial of service...
CVE-2023-20513
CVE-2023-20513 concerns the Power Management Firmware (PMFW). Multiple sources confirm an insufficient bounds check in PMFW can be exploited by a malicious VF (virtualization function) to send a malformed message, potentially causing a denial of service . The Red Hat/NVD/NVD-derived descriptions ...
CVE-2023-20513
An insufficient bounds check in PMFW Power Management Firmware may allow an attacker to utilize a malicious VF virtualization function to send a malformed message, potentially resulting in a denial of service...
CVE-2023-20513
An insufficient bounds check in PMFW Power Management Firmware may allow an attacker to utilize a malicious VF virtualization function to send a malformed message, potentially resulting in a denial of service...
Multi-vendor BIOS Security Vulnerabilities (August, 2024) - Lenovo Support US
No description provided...
Moderate: Red Hat Security Advisory: OpenShift Virtualization 4.13.10 Images security update
Red Hat OpenShift Virtualization release 4.13.10 is now available with updates to packages and images that fix several bugs and add enhancements. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which...
kernel: KVM: s390: vsie: fix race during shadow creation
In the Linux kernel, the following vulnerability has been resolved: KVM: s390: vsie: fix race during shadow creation Right now it is possible to see gmap-private being zero in kvms390vsiegmapnotifier resulting in a crash. This is due to the fact that we add gmap-private == kvm after creation:...