Lucene search
K

13008 matches found

Tenable Nessus
Tenable Nessus
added 2024/03/14 12:0 a.m.40 views

EulerOS Virtualization 2.10.1 : libX11 (EulerOS-SA-2024-1362)

According to the versions of the libX11 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A vulnerability was found in libX11 due to a boundary condition within the XkbReadKeySyms function. This flaw allows a local user ...

7.8CVSS7.1AI score0.00633EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2024/03/14 12:0 a.m.43 views

EulerOS Virtualization 2.10.1 : gdb (EulerOS-SA-2024-1356)

According to the versions of the gdb packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - GNU gdb GDB 13.0.50.20220805-git was discovered to contain a heap use after free via the function addpeexportedsym at...

5.5CVSS5.9AI score0.00238EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/03/14 12:0 a.m.26 views

EulerOS Virtualization 2.10.0 : libXpm (EulerOS-SA-2024-1385)

According to the versions of the libXpm package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A vulnerability was found in libXpm due to a boundary condition within the XpmCreateXpmImageFromBuffer function. This flaw allows ...

5.5CVSS6.2AI score0.00365EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/03/14 12:0 a.m.39 views

EulerOS Virtualization 2.10.0 : libX11 (EulerOS-SA-2024-1383)

According to the versions of the libX11 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A vulnerability was found in libX11 due to a boundary condition within the XkbReadKeySyms function. This flaw allows a local user ...

7.8CVSS7.1AI score0.00633EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2024/03/14 12:0 a.m.10 views

Huawei EulerOS: Security Advisory for samba (EulerOS-SA-2024-1391)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.6AI score0.01174EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/03/14 12:0 a.m.42 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2024-1376)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.8AI score0.78483EPSS
Exploits6References3
OpenVAS
OpenVAS
added 2024/03/14 12:0 a.m.12 views

Huawei EulerOS: Security Advisory for samba (EulerOS-SA-2024-1370)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.6AI score0.01174EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/03/14 12:0 a.m.36 views

EulerOS Virtualization 2.10.1 : nghttp2 (EulerOS-SA-2024-1365)

According to the versions of the nghttp2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The HTTP/2 protocol allows a denial of service server resource consumption because request cancellation can reset many streams...

7.5CVSS7.2AI score0.99999EPSS
Exploits19References2
Tenable Nessus
Tenable Nessus
added 2024/03/14 12:0 a.m.44 views

EulerOS Virtualization 2.10.0 : nghttp2 (EulerOS-SA-2024-1386)

According to the versions of the nghttp2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The HTTP/2 protocol allows a denial of service server resource consumption because request cancellation can reset many streams...

7.5CVSS7.2AI score0.99999EPSS
Exploits19References2
OpenVAS
OpenVAS
added 2024/03/14 12:0 a.m.34 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2024-1359)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.5AI score0.03024EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/03/14 12:0 a.m.47 views

EulerOS Virtualization 2.10.0 : httpd (EulerOS-SA-2024-1380)

According to the versions of the httpd packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Out-of-bounds Read vulnerability in modmacro of Apache HTTP Server.This issue affects Apache HTTP Server: through 2.4.57...

7.5CVSS7.2AI score0.03024EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2024/03/14 12:0 a.m.43 views

EulerOS Virtualization 2.10.1 : httpd (EulerOS-SA-2024-1359)

According to the versions of the httpd packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Out-of-bounds Read vulnerability in modmacro of Apache HTTP Server.This issue affects Apache HTTP Server: through 2.4.57...

7.5CVSS7.2AI score0.03024EPSS
Exploits1References3
Malwarebytes
Malwarebytes
added 2024/03/13 3:13 p.m.46 views

Microsoft Patch Tuesday March 2024 includes critical Hyper-V flaws

The March 2024 Patch Tuesday update includes patches for 61 Microsoft vulnerabilities. Only two of the vulnerabilities are rated critical and both of these are found in Windows Hyper-V. Hyper-V is a hardware virtualization product that allows you to run multiple operating systems as virtual...

7.5CVSS8.3AI score0.20157EPSS
Exploits0
OSV
OSV
added 2024/03/12 2:18 p.m.3 views

USN-6691-1 ovn vulnerability

It was discovered that OVN incorrectly enabled OVS Bidirectional Forwarding Detection on logical ports. A remote attacker could possibly use this issue to disrupt traffic...

6.5CVSS6.8AI score0.00783EPSS
Exploits0References2
Rosalinux
Rosalinux
added 2024/03/12 12:50 p.m.19 views

Advisory ROSA-SA-2024-2373

Software: pixman 0.38.4 OS: ROSA Virtualization 2.1 packageevrstring: pixman-0.38.4.src.rpm CVE-ID: CVE-2022-44638 BDU-ID: 2022-06667 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the rasterizeedges8 function of the Pixman library is related to the ability to write beyond buffer boundaries in...

8.8CVSS8AI score0.0144EPSS
Exploits1
Rosalinux
Rosalinux
added 2024/03/12 12:48 p.m.16 views

Advisory ROSA-SA-2024-2372

Software: openldap 2.4.46 OS: ROSA Virtualization 2.1 packageevrstring: openldap-2.4.46-10.el8.src.rpm CVE-ID: CVE-2020-15719 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: libldap in some third-party OpenLDAP packages has a certificate validation error when the third-party package asserts support for...

4.2CVSS7.3AI score0.02417EPSS
Exploits0
CNNVD
CNNVD
added 2024/03/11 12:0 a.m.2 views

Red Hat libvirt Security Vulnerabilities

Red Hat libvirt is a Linux API for implementing Linux virtualization features from Red Hat, Inc. that supports a variety of Hypervisors, including Xen and KVM, as well as QEMU and a number of virtual products for other operating systems. A security vulnerability exists in Red Hat libvirt. An...

5.5CVSS7.1AI score0.00398EPSS
Exploits0References3
Fedora
Fedora
added 2024/03/07 10:33 p.m.35 views

[SECURITY] Fedora 40 Update: libvirt-java-0.4.9-29.fc40

Libvirt-java is a base framework allowing to use libvirt, the virtualization API though the Java programming language. It requires libvirt-client =3D 0.9.12...

8.8CVSS6.8AI score0.02557EPSS
Exploits3
OSV
OSV
added 2024/03/07 9:30 p.m.7 views

GHSA-FG9Q-5CW2-P6R9 kubevirt-csi: PersistentVolume allows access to HCP's root node

A flaw was found in the kubevirt-csi component of OpenShift Virtualization's Hosted Control Plane HCP. This issue could allow an authenticated attacker to gain access to the root HCP worker node's volume by creating a custom Persistent Volume that matches the name of a worker node...

8.1CVSS6.5AI score0.00631EPSS
Exploits0References9
Github Security Blog
Github Security Blog
added 2024/03/07 9:30 p.m.13 views

kubevirt-csi: PersistentVolume allows access to HCP's root node

A flaw was found in the kubevirt-csi component of OpenShift Virtualization's Hosted Control Plane HCP. This issue could allow an authenticated attacker to gain access to the root HCP worker node's volume by creating a custom Persistent Volume that matches the name of a worker node...

6.5CVSS7AI score0.00631EPSS
Exploits0References9Affected Software1
Rows per page
Query Builder