Lucene search
K

13006 matches found

SUSE CVE
SUSE CVE
added 2024/06/27 12:5 a.m.3 views

SUSE CVE-2021-4440

In the Linux kernel, the following vulnerability has been resolved: x86/xen: Drop USERGSSYSRET64 paravirt call commit afd30525a659ac0ae0904f0cb4a2ca75522c3123 upstream. USERGSSYSRET64 is used to return from a syscall via SYSRET, but a Xen PV guest will nevertheless use the IRET hypercall, as ther...

4.4CVSS7.5AI score0.00227EPSS
Exploits0References6
IBM Security Bulletins
IBM Security Bulletins
added 2024/06/25 10:19 p.m.58 views

Security Bulletin: IBM Virtualization Engine TS7700 is susceptible to multiple vulnerabilities in WebSphere Application Server Liberty

Summary IBM Virtualization Engine TS7700 is vulnerable to two potential denial of service conditions CVE-2023-44487, CVE-2024-25026 and two instances of weaker than expected security CVE-2023-50312, CVE-2023-46158 due to WebSphere Application Server Liberty. WebSphere Application Server Liberty i...

9.8CVSS8.5AI score0.99999EPSS
Exploits19Affected Software3
CNNVD
CNNVD
added 2024/06/25 12:0 a.m.4 views

VMware ESXi Security Vulnerabilities

VMware ESXi is a suite of server virtualization platforms from VMware that can be installed directly on physical servers. A security vulnerability exists in VMware ESXi that stems from an authentication bypass vulnerability that could allow an attacker to gain full access to a previously configur...

7.2CVSS6.8AI score0.2677EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/06/25 12:0 a.m.3 views

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. Linux kernel has a security vulnerability that originates from a security issue in x86/xen USERGSSYSRET64...

8.8CVSS6.3AI score0.00227EPSS
Exploits0References1
Amazon
Amazon
added 2024/06/24 12:0 a.m.3 views

Important: kernel

Issue Overview: An issue was discovered in arch/x86/kvm/vmx/nested.c in the Linux kernel before 6.2.8. nVMX on x8664 lacks consistency checks for CR0 and CR4. CVE-2023-30456 In the Linux kernel, the following vulnerability has been resolved: net: bridge: use DEVSTATSINC CVE-2023-52578 In the Linu...

9.1CVSS6.4AI score0.01401EPSS
Exploits1
SUSE CVE
SUSE CVE
added 2024/06/22 4:8 a.m.2 views

SUSE CVE-2022-48764

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Free kvmcpuidentry2 array on post-KVMRUN KVMSETCPUID,2 Free the "struct kvmcpuidentry2" array on successful post-KVMRUN KVMSETCPUID,2 to fix a memory leak, the callers of kvmsetcpuid free the array only on failure. BUG:...

5.3CVSS6.5AI score0.00179EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2024/06/22 4:8 a.m.3 views

SUSE CVE-2022-48765

In the Linux kernel, the following vulnerability has been resolved: KVM: LAPIC: Also cancel preemption timer during SETLAPIC The below warning is splatting during guest reboot. ------------ cut here ------------ WARNING: CPU: 0 PID: 1931 at arch/x86/kvm/x86.c:10322 kvmarchvcpuioctlrun+0x874/0x880...

5.5CVSS6.5AI score0.0021EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2024/06/21 3:37 a.m.2 views

SUSE CVE-2022-48763

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Forcibly leave nested virt when SMM state is toggled Forcibly leave nested virtualization operation if userspace toggles SMM state via KVMSETVCPUEVENTS or KVMSYNCX86EVENTS. If userspace forces the vCPU out of SMM while...

4.1CVSS6.2AI score0.00219EPSS
Exploits0References8
Fedora
Fedora
added 2024/06/21 1:16 a.m.21 views

[SECURITY] Fedora 39 Update: libvirt-9.7.0-4.fc39

Libvirt is a C toolkit to interact with the virtualization capabilities of recent versions of Linux and other OSes. The main package includes the libvirtd server exporting the virtualization support...

6.2CVSS7.2AI score0.00486EPSS
Exploits0
NVD
NVD
added 2024/06/20 12:15 p.m.25 views

CVE-2022-48763

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Forcibly leave nested virt when SMM state is toggled Forcibly leave nested virtualization operation if userspace toggles SMM state via KVMSETVCPUEVENTS or KVMSYNCX86EVENTS. If userspace forces the vCPU out of SMM while...

5.5CVSS0.00219EPSS
Exploits0References4
OSV
OSV
added 2024/06/20 12:15 p.m.3 views

DEBIAN-CVE-2022-48763

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Forcibly leave nested virt when SMM state is toggled Forcibly leave nested virtualization operation if userspace toggles SMM state via KVMSETVCPUEVENTS or KVMSYNCX86EVENTS. If userspace forces the vCPU out of SMM while...

5.5CVSS5.1AI score0.00219EPSS
Exploits0References1
OSV
OSV
added 2024/06/20 12:15 p.m.4 views

UBUNTU-CVE-2022-48763

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Forcibly leave nested virt when SMM state is toggled Forcibly leave nested virtualization operation if userspace toggles SMM state via KVMSETVCPUEVENTS or KVMSYNCX86EVENTS. If userspace forces the vCPU out of SMM while...

5.5CVSS5.8AI score0.00219EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2024/06/20 12:0 a.m.18 views

CVE-2022-48763

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Forcibly leave nested virt when SMM state is toggled Forcibly leave nested virtualization operation if userspace toggles SMM state via KVMSETVCPUEVENTS or KVMSYNCX86EVENTS. If userspace forces the vCPU out of SMM while...

5.5CVSS5.9AI score0.00219EPSS
Exploits0References6
CNNVD
CNNVD
added 2024/06/20 12:0 a.m.2 views

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a forced departure from the nested virtualizer when the KVM:x86 module switches SMM states...

5.5CVSS6.5AI score0.00219EPSS
Exploits0References7
IBM Security Bulletins
IBM Security Bulletins
added 2024/06/19 10:43 a.m.27 views

Security Bulletin: A vulnerability in Transparent Cloud Tiering affects IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products

Summary A vulnerability in netty-codec-http affects the Transparent Cloud Tiering function in IBM Storage Virtualize products. Most systems do not have Transparent Cloud Tiering configured. You can confirm by running the lsvolumebackup CLI command - if there is no output, then this feature is not...

5.3CVSS6.1AI score0.0138EPSS
Exploits1Affected Software10
CNNVD
CNNVD
added 2024/06/18 12:0 a.m.8 views

VMware vCenter Server Security Vulnerability

VMware vCenter Server is a suite of server and virtualization management software from VMware. The software provides a centralized platform for managing VMware vSphere environments that automates the implementation and delivery of virtual infrastructures. A security vulnerability exists in VMware...

9.8CVSS6.8AI score0.22377EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/06/18 12:0 a.m.4 views

VMware vCenter Server Security Vulnerability

VMware vCenter Server is a suite of server and virtualization management software from VMware. The software provides a centralized platform for managing VMware vSphere environments that automates the implementation and delivery of virtual infrastructures. A security vulnerability exists in VMware...

9.8CVSS6.8AI score0.12478EPSS
Exploits0References3
Rosalinux
Rosalinux
added 2024/06/17 8:57 a.m.31 views

Advisory ROSA-SA-2024-2432

Software: man-db 2.7.6.1 OS: ROSA Virtualization 2.1 packageevrstring: man-db-2.7.6.1 CVE-ID: CVE-2018-25078 BDU-ID: None CVE-Crit: N/A CVE-DESC.: man-db in Gentoo allows local users with access to the man user account to gain root privileges, because /usr/bin/mandb is executed by the root user,...

7.8CVSS7.8AI score0.00383EPSS
Exploits1
Rosalinux
Rosalinux
added 2024/06/17 8:56 a.m.22 views

Advisory ROSA-SA-2024-2431

Software: lua 5.3.4 OS: ROSA Virtualization 2.1 packageevrstring: lua-5.3.4 CVE-ID: CVE-2021-43519 BDU-ID: None CVE-Crit: N/A CVE-DESC.: Stack overflow in luaresume of the ldo.c file in Lua Interpreter allows attackers to perform a denial of service via a script file created. CVE-STATUS: Not...

5.5CVSS7AI score0.01136EPSS
Exploits1
OSV
OSV
added 2024/06/15 12:0 a.m.14 views

OPENSUSE-SU-2024:13257-1 xen-4.17.2_04-1.1 on GA media

These are all security issues fixed in the xen-4.17.204-1.1 package on the GA media of openSUSE Tumbleweed...

7.8CVSS7AI score0.12405EPSS
Exploits0References2
Rows per page
Query Builder