Lucene search
K

13007 matches found

Tenable Nessus
Tenable Nessus
added 2024/05/15 12:0 a.m.25 views

EulerOS Virtualization 2.11.0 : openssl (EulerOS-SA-2024-1632)

According to the versions of the openssl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Issue summary: Processing a maliciously formatted PKCS12 file may lead OpenSSL to crash leading to a potential Denial of Service...

5.5CVSS6.4AI score0.03174EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/05/15 12:0 a.m.38 views

EulerOS Virtualization 2.11.0 : python-pycryptodome (EulerOS-SA-2024-1637)

According to the versions of the python-pycryptodome package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - PyCryptodome and pycryptodomex before 3.19.1 allow side-channel leakage for OAEP decryption, exploitable for a Manger...

5.9CVSS6.9AI score0.00618EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/05/15 12:0 a.m.18 views

EulerOS Virtualization 2.11.0 : python-pillow (EulerOS-SA-2024-1636)

According to the versions of the python-pillow package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Pillow through 10.1.0 allows PIL.ImageMath.eval Arbitrary Code Execution via the environment parameter, a different...

9.8CVSS7AI score0.03399EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/05/15 12:0 a.m.22 views

EulerOS Virtualization 2.11.0 : sudo (EulerOS-SA-2024-1640)

According to the versions of the sudo package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Sudo before 1.9.15 might allow row hammer attacks for authentication bypass or privilege escalation because application logic...

7CVSS6.7AI score0.00541EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/05/15 12:0 a.m.12 views

EulerOS Virtualization 2.11.1 : ncurses (EulerOS-SA-2024-1611)

According to the versions of the ncurses packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - NCurse v6.4-20230418 was discovered to contain a segmentation fault via the component ncwrapentry. CVE-2023-50495 Note that...

6.5CVSS6.8AI score0.00962EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/05/15 12:0 a.m.51 views

EulerOS Virtualization 2.11.0 : qemu (EulerOS-SA-2024-1643)

According to the versions of the qemu package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the QEMU built-in VNC server while processing ClientCutText messages. The qemuclipboardrequest function can be...

6.5CVSS6.6AI score0.01261EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/05/15 12:0 a.m.32 views

EulerOS Virtualization 2.11.0 : libssh2 (EulerOS-SA-2024-1629)

According to the versions of the libssh2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attacke...

5.9CVSS7.1AI score0.93305EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2024/05/15 12:0 a.m.53 views

EulerOS Virtualization 2.11.1 : qemu (EulerOS-SA-2024-1624)

According to the versions of the qemu package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the QEMU built-in VNC server while processing ClientCutText messages. The qemuclipboardrequest function can be...

6.5CVSS6.6AI score0.01261EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/05/15 12:0 a.m.30 views

EulerOS Virtualization 2.11.1 : gnutls (EulerOS-SA-2024-1607)

According to the versions of the gnutls packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A vulnerability was found in GnuTLS. The response times to malformed ciphertexts in RSA-PSK ClientKeyExchange differ from the...

7.5CVSS6.5AI score0.01614EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2024/05/15 12:0 a.m.16 views

EulerOS Virtualization 2.11.1 : pam (EulerOS-SA-2024-1614)

According to the versions of the pam package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - linux-pam aka Linux PAM before 1.6.0 allows attackers to cause a denial of service blocked login process via mkfifo because the opena...

5.5CVSS6.2AI score0.00455EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/05/15 12:0 a.m.18 views

EulerOS Virtualization 2.11.1 : openssl (EulerOS-SA-2024-1613)

According to the versions of the openssl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Issue summary: Processing a maliciously formatted PKCS12 file may lead OpenSSL to crash leading to a potential Denial of Service...

5.5CVSS6.4AI score0.03174EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/05/15 12:0 a.m.14 views

Huawei EulerOS: Security Advisory for python-pycryptodome (EulerOS-SA-2024-1618)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS7.5AI score0.00618EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/05/15 12:0 a.m.37 views

Huawei EulerOS: Security Advisory for gnutls (EulerOS-SA-2024-1607)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.1AI score0.01614EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2024/05/15 12:0 a.m.23 views

Huawei EulerOS: Security Advisory for sqlite (EulerOS-SA-2024-1620)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.3CVSS6.1AI score0.01249EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2024/05/15 12:0 a.m.26 views

Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2024-1624)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS7.5AI score0.01261EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/05/15 12:0 a.m.12 views

Huawei EulerOS: Security Advisory for pam (EulerOS-SA-2024-1633)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS7.5AI score0.00455EPSS
Exploits1References2
Rosalinux
Rosalinux
added 2024/05/14 9:30 a.m.42 views

Advisory ROSA-SA-2024-2420

Software: jackson-databind 2.10.0 OS: ROSA Virtualization 2.1 packageevrstring: jackson-databind-2.10.0 CVE-ID: CVE-2020-35490 BDU-ID: 2022-03804 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the org.apache.commons.dbcp2.datasources.PerUserPoolDataSource component of the Jackson-databind library o...

8.8CVSS8.1AI score0.20929EPSS
Exploits14
Positive Technologies
Positive Technologies
added 2024/05/14 12:0 a.m.3 views

PT-2024-3612 · Microsoft · Windows Hyper-V +1

Name of the Vulnerable Software and Affected Versions: Windows Hyper-V affected versions not specified Description: The issue is related to errors in handling relative path to directory in the Windows Hyper-V hardware virtualization system, which can be exploited by a remote attacker to execute...

9CVSS7.3AI score0.02324EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/05/14 12:0 a.m.3 views

Microsoft Windows Hyper-V 安全漏洞

Microsoft Hyper-V is an application from Microsoft USA. A system hypervisor virtualization technology that enables desktop virtualization. A security vulnerability exists in Microsoft Windows Hyper-V. The following products and editions are affected:Windows 11 Version 23H2 for ARM64-based...

8.8CVSS6.4AI score0.01912EPSS
Exploits0References4
Rockylinux
Rockylinux
added 2024/05/10 2:32 p.m.50 views

qemu-kvm security update

An update is available for qemu-kvm. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Kernel-based Virtual Machine KVM is a full virtualization solution for Linux...

7CVSS7.2AI score0.01405EPSS
Exploits1
Rows per page
Query Builder