13007 matches found
EulerOS Virtualization 2.10.1 : mozjs60 (EulerOS-SA-2024-1550)
According to the versions of the mozjs60 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A type confusion vulnerability can occur when manipulating JavaScript objects due to issues in Array.pop. This can allow for an...
EulerOS Virtualization 2.10.1 : vim (EulerOS-SA-2024-1559)
According to the versions of the vim packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Vim is a UNIX editor that, prior to version 9.0.2121, has a heap-use-after-free vulnerability. When executing a :s command for the...
EulerOS Virtualization 2.10.1 : python-jinja2 (EulerOS-SA-2024-1554)
According to the versions of the python-jinja2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Jinja is an extensible templating engine. Special placeholders in the template allow writing code similar to Python syntax...
EulerOS Virtualization 2.10.1 : curl (EulerOS-SA-2024-1543)
According to the versions of the curl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - This flaw allows a malicious HTTP server to set 'super cookies' in curl that are then passed back to more origins than what is...
EulerOS Virtualization 2.10.1 : libssh2 (EulerOS-SA-2024-1548)
According to the versions of the libssh2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attacke...
EulerOS Virtualization 2.10.0 : sqlite (EulerOS-SA-2024-1536)
According to the versions of the sqlite package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A vulnerability was found in SQLite SQLite3 up to 3.43.0 and classified as critical. This issue affects the function...
EulerOS Virtualization 2.10.0 : binutils (EulerOS-SA-2024-1523)
According to the versions of the binutils package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Heap buffer overflow vulnerability in binutils readelf before 2.40 via function findsectioninset in file readelf.c. CVE-2022-448...
EulerOS Virtualization 2.10.0 : python-jinja2 (EulerOS-SA-2024-1535)
According to the versions of the python-jinja2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Jinja is an extensible templating engine. Special placeholders in the template allow writing code similar to Python syntax...
EulerOS Virtualization 2.10.0 : libXpm (EulerOS-SA-2024-1530)
According to the versions of the libXpm package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A vulnerability was found in libX11 due to an infinite loop within the PutSubImage function. This flaw allows a local user to...
EulerOS Virtualization 2.10.0 : mozjs60 (EulerOS-SA-2024-1531)
According to the versions of the mozjs60 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A type confusion vulnerability can occur when manipulating JavaScript objects due to issues in Array.pop. This can allow for an...
EulerOS Virtualization 2.10.0 : vim (EulerOS-SA-2024-1540)
According to the versions of the vim packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Vim is a UNIX editor that, prior to version 9.0.2121, has a heap-use-after-free vulnerability. When executing a :s command for the...
Privilege Escalation
virtualBox is vulnerable to Privilege Escalation. The vulnerability is due to inadequate access controls to Oracle VM VirtualBox product of Oracle Virtualization, allowing a high privileged attacker with login credentials to compromise Oracle VM VirtualBox installations...
Unauthorized Access
virtualBox is vulnerable to Unauthorized Access. The vulnerability is due to inadequate access controls to the Oracle VM VirtualBox product of Oracle Virtualization, allowing a low-privileged attacker with login credentials to compromise Oracle VM VirtualBox...
Denial Of Service (DoS)
virtualBox is vulnerable to Denial of Service DOS.The vulnerability is due to insufficient input validation in VM VirtualBox product of Oracle Virtualization , allowing a low privileged attacker with login access to compromise Oracle VM VirtualBox installations...
Privilege Escalation
virtualBox is vulnerable to Privilege Escalation. The vulnerability is due to inadequate access controls to Oracle VM VirtualBox product of Oracle Virtualization, allowing a low-privileged attacker with login credentials to compromise installations of Oracle VM VirtualBox...
Privilege Escalation
virtualbox is vulnerable to Privilege Escalation. The vulnerability is due to insufficient access controls in Oracle VM VirtualBox product of Oracle Virtualization, allowing a low-privileged attacker with login credentials to compromise Oracle VM VirtualBox installations...
Privilege Escalation
virtualBox is vulnerable to Privilege Escalation. The vulnerability is due to inadequate access controls in Oracle VM VirtualBox product of Oracle Virtualization, allowing a low-privileged attacker with login credentials to compromise Oracle VM VirtualBox installations...
Privilege Escalation
virtualBox is vulnerable to Privilege Escalation. The vulnerability is due to insufficient access controls in the Oracle VM VirtualBox product of Oracle Virtualization, allowing a low-privileged attacker with login credentials to compromise Oracle VM VirtualBox installations...
Privilege Escalation
virtualBox is vulnerable to Privilege Escalation. The vulnerability is due to inadequate access controls in the Oracle VM VirtualBox product of Oracle Virtualization, allowing a low-privileged attacker with login credentials to compromise Oracle VM VirtualBox installations...
Advisory ROSA-SA-2024-2401
Software: swtpm 0.7.0 OS: ROSA Virtualization 2.1 packageevrstring: swtpm-0.7.0-4.20211109gitb79fd91.module+el8.7.0+16689+53d59bc2.src.rpm CVE-ID: CVE-2022-23645 BDU-ID: 2022-06088 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the swtpm emulator TPM is related to reading beyond buffer boundaries...