Lucene search
K

13007 matches found

Tenable Nessus
Tenable Nessus
added 2024/05/17 12:0 a.m.18 views

EulerOS Virtualization 3.0.6.0 : samba (EulerOS-SA-2024-1704)

According to the versions of the samba packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A vulnerability was discovered in Samba, where the flaw allows SMB clients to truncate files, even with read-only permissions when...

6.5CVSS6.9AI score0.01174EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/05/17 12:0 a.m.38 views

EulerOS Virtualization 3.0.6.6 : httpd (EulerOS-SA-2024-1653)

According to the versions of the httpd packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Out-of-bounds Read vulnerability in modmacro of Apache HTTP Server.This issue affects Apache HTTP Server: through 2.4.57...

7.5CVSS7.4AI score0.02978EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/05/17 12:0 a.m.35 views

EulerOS Virtualization 3.0.6.0 : vim (EulerOS-SA-2024-1708)

According to the versions of the vim packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.1531. CVE-2023-2609 - Vim is an improved version of the good old...

7.8CVSS6.3AI score0.0119EPSS
Exploits5References10
Tenable Nessus
Tenable Nessus
added 2024/05/17 12:0 a.m.27 views

EulerOS Virtualization 3.0.6.0 : shadow-utils (EulerOS-SA-2024-1705)

According to the versions of the shadow-utils package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in shadow-utils. When asking for a new password, shadow-utils asks the password twice. If the password fail...

5.5CVSS6.5AI score0.00257EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/05/17 12:0 a.m.36 views

EulerOS Virtualization 3.0.6.0 : python-pip (EulerOS-SA-2024-1702)

According to the versions of the python-pip packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - urllib3 before 1.24.2 does not remove the authorization HTTP header when following a cross-origin redirect i.e., a redirect...

8.1CVSS6.9AI score0.01207EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/05/17 12:0 a.m.13 views

EulerOS Virtualization 3.0.6.6 : ghostscript (EulerOS-SA-2024-1649)

According to the versions of the ghostscript packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In Artifex Ghostscript through 10.01.0, there is a buffer overflow leading to potential corruption of data internal to the...

9.8CVSS8.3AI score0.06341EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/05/17 12:0 a.m.44 views

EulerOS Virtualization 3.0.6.0 : python2 (EulerOS-SA-2024-1697)

According to the versions of the python2 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A use-after-free exists in Python through 3.9 via heappushpop in heapq. CVE-2022-48560 - An XML External Entity XXE issue was...

9.8CVSS7AI score0.04268EPSS
Exploits5References4
Tenable Nessus
Tenable Nessus
added 2024/05/17 12:0 a.m.24 views

EulerOS Virtualization 3.0.6.6 : libXpm (EulerOS-SA-2024-1658)

According to the versions of the libXpm packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A vulnerability was found in libXpm due to a boundary condition within the XpmCreateXpmImageFromBuffer function. This flaw allows...

5.5CVSS6.2AI score0.00365EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/05/17 12:0 a.m.21 views

EulerOS Virtualization 3.0.6.0 : compat-openssl10 (EulerOS-SA-2024-1675)

According to the versions of the compat-openssl10 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Issue summary: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be...

5.3CVSS6.5AI score0.04459EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/05/17 12:0 a.m.43 views

EulerOS Virtualization 3.0.6.0 : httpd (EulerOS-SA-2024-1684)

According to the versions of the httpd packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Out-of-bounds Read vulnerability in modmacro of Apache HTTP Server.This issue affects Apache HTTP Server: through 2.4.57...

7.5CVSS7.2AI score0.03024EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2024/05/17 12:0 a.m.31 views

EulerOS Virtualization 3.0.6.0 : php (EulerOS-SA-2024-1696)

According to the versions of the php packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In PHP versions 8.0. before 8.0.30, 8.1. before 8.1.22, and 8.2. before 8.2.8 various XML functions rely on libxml global state to...

8.6CVSS7.1AI score0.0121EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/05/17 12:0 a.m.34 views

EulerOS Virtualization 3.0.6.6 : libX11 (EulerOS-SA-2024-1657)

According to the versions of the libX11 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A vulnerability was found in libX11 due to a boundary condition within the XkbReadKeySyms function. This flaw allows a local user...

7.8CVSS7.1AI score0.00633EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2024/05/17 12:0 a.m.29 views

EulerOS Virtualization 3.0.6.0 : grub2 (EulerOS-SA-2024-1683)

According to the versions of the grub2 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An out-of-bounds write flaw was found in grub2's NTFS filesystem driver. This issue may allow an attacker to present a specially...

7.8CVSS6.6AI score0.00536EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2024/05/17 12:0 a.m.16 views

EulerOS Virtualization 3.0.6.6 : python-configobj (EulerOS-SA-2024-1664)

According to the versions of the python-configobj package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - All versions of the package configobj are vulnerable to Regular Expression Denial of Service ReDoS via the validate...

5.9CVSS5.4AI score0.01259EPSS
Exploits1References2
OSV
OSV
added 2024/05/16 2:15 p.m.4 views

ALPINE-CVE-2023-46842

Unlike 32-bit PV guests, HVM guests may switch freely between 64-bit and other modes. This in particular means that they may set registers used to pass 32-bit-mode hypercall arguments to values outside of the range 32-bit code would be able to set them to. When processing of hypercalls takes a...

6.5CVSS7.1AI score0.0853EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2024/05/16 12:0 a.m.12 views

Huawei EulerOS: Security Advisory for util-linux (EulerOS-SA-2024-1668)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.7CVSS7.5AI score0.0052EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2024/05/16 12:0 a.m.29 views

Huawei EulerOS: Security Advisory for gdb (EulerOS-SA-2024-1648)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.1AI score0.00659EPSS
Exploits4References2
CNNVD
CNNVD
added 2024/05/16 12:0 a.m.3 views

Intel Trust Domain Extensions 安全漏洞

Intel Trust Domain Extensions is a confidential virtualization solution from Intel Corporation USA designed to isolate confidential virtual machines from unclassified domain software stacks, including hypervisors, VMMs, and other non-trusted domain software stacks, to ensure that the data of...

8.2CVSS6.2AI score0.00379EPSS
Exploits0References5
OSV
OSV
added 2024/05/15 6:15 p.m.3 views

DEBIAN-CVE-2024-25743

In the Linux kernel through 6.9, an untrusted hypervisor can inject virtual interrupts 0 and 14 at any point in time and can trigger the SIGFPE signal handler in userspace applications. This affects AMD SEV-SNP and AMD SEV-ES...

7.1CVSS6.2AI score0.00247EPSS
Exploits0References1
OSV
OSV
added 2024/05/15 6:15 p.m.1 views

UBUNTU-CVE-2024-25743

In the Linux kernel through 6.9, an untrusted hypervisor can inject virtual interrupts 0 and 14 at any point in time and can trigger the SIGFPE signal handler in userspace applications. This affects AMD SEV-SNP and AMD SEV-ES...

7.1CVSS6.5AI score0.00247EPSS
Exploits0References5
Rows per page
Query Builder