AZL-69790 CVE-2025-64436 affecting package kubevirt for versions less than 1.6.3-1

KubeVirt is a virtual machine management add-on for Kubernetes. In 1.5.0 and earlier, the permissions granted to the virt-handler service account, such as the ability to update VMI and patch nodes, could be abused to force a VMI migration to an attacker-controlled node. This vulnerability could...

CVE-2025-64436

KubeVirt is a virtual machine management add-on for Kubernetes. In 1.5.0 and earlier, the permissions granted to the virt-handler service account, such as the ability to update VMI and patch nodes, could be abused to force a VMI migration to an attacker-controlled node. This vulnerability could...

CVE-2025-64435

CVE-2025-64435 affects KubeVirt’s virt-controller. A logic flaw allows an attacker to disrupt control of a running VMI by creating a pod with the same labels as the legitimate virt-launcher pod, causing the virt-controller to bind the fake pod to the VMI, leading to incorrect status updates and a...

KubeVirt Excessive Role Permissions Could Enable Unauthorized VMI Migrations Between Nodes

Summary The permissions granted to the virt-handler service account, such as the ability to update VMI and patch nodes, could be abused to force a VMI migration to an attacker-controlled node. Details Following the GitHub security advisory published on March 23 2023, a ValidatingAdmissionPolicy w...

EUVD-2008-4391

Malware in sbrugna...

SQL Injection Vulnerability in Supplier Query System of Shanghai Haidian Software Corporation (CNVD-2022-21719)

Vendor inquiry system is based on VMI management ideas, sharing the enterprise's operational business data with suppliers, instantly controlling the sales information and inventory levels as a solution for market demand forecasting and inventory replenishment. A SQL injection vulnerability exists...

File Upload Vulnerability in the Switch Centralized Management Platform of Shenzhen VMware Technology Co.

Ltd. is a network total solution and smart home solution provider. A file upload vulnerability exists in the switch centralized management platform of Shenzhen WML Technology Co. Ltd. that can be exploited by an attacker to upload a webshell and gain server privileges...

DECAF - Short for Dynamic Executable Code Analysis Framework

DECAF++, the new version of DECAF, taint analysis is around 2X faster making it the fastest, to the best of our knowledge, whole-system dynamic taint analysis framework. This results in a much better usability imposing only 4% overhead SPEC CPU2006 when no suspicious tainted input exists. Even...

Python Scriptable Reverse Engineering Sandbox: PyREBox

PyREBox is a Python scriptable Reverse Engineering sandbox. It is based on QEMU, and its goal is to aid reverse engineering by providing dynamic analysis and debugging capabilities from a different perspective. PyREBox allows to inspect a running QEMU VM, modify its memory or registers, and to...

rVMI: Perform Full System Analysis with Ease

Manual dynamic analysis is an important concept. It enables us to observe the behavior of a sophisticated malware sample or exploit by executing it in a controlled environment. The information gathered through this process is often crucial in gaining a full understanding of a sample. When...

PyREBox - Python scriptable Reverse Engineering Sandbox

PyREBox is a Python scriptable Reverse Engineering sandbox. It is based on QEMU, and its goal is to aid reverse engineering by providing dynamic analysis and debugging capabilities from a different perspective. PyREBox allows to inspect a running QEMU VM, modify its memory or registers, and to...

PyREBox, a Python Scriptable Reverse Engineering Sandbox

This post was authored by Xabier Ugarte PedreroIn Talos, we are continuously trying to improve our research and threat intelligence capabilities. As a consequence, we not only leverage standard tools for analysis, but we also focus our efforts on innovation, developing our own technology to...

CVE-2016-6270

The handlecertificate function in /vmi/manager/engine/management/commands/apnsworker.py in Trend Micro Virtual Mobile Infrastructure before 5.1 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the password to api/v1/cfg/oauth/saveidentifypfx/...

Design/Logic Flaw

The handlecertificate function in /vmi/manager/engine/management/commands/apnsworker.py in Trend Micro Virtual Mobile Infrastructure before 5.1 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the password to api/v1/cfg/oauth/saveidentifypfx/...

CVE-2016-6270

The handlecertificate function in /vmi/manager/engine/management/commands/apnsworker.py in Trend Micro Virtual Mobile Infrastructure before 5.1 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the password to api/v1/cfg/oauth/saveidentifypfx/...

SLES11: Security update for Linux kernel

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: ext4dev-kmp-default ext4dev-kmp-pae ext4dev-kmp-vmi ext4dev-kmp-xen kernel-default kernel-default-base kernel-pae kernel-pae-base kernel-source kernel-syms...

SLES10: Security update for Linux kernel

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: kernel-bigsmp kernel-debug kernel-default kernel-kdump kernel-smp kernel-source kernel-syms kernel-vmi kernel-vmipae kernel-xen kernel-xenpae More details ma...

SLES10: Security update for Linux kernel

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: kernel-bigsmp kernel-debug kernel-default kernel-kdump kernel-smp kernel-source kernel-syms kernel-vmi kernel-vmipae kernel-xen kernel-xenpae More details ma...

SLES11: Security update for the Linux kernel

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: ext4dev-kmp-default ext4dev-kmp-pae ext4dev-kmp-vmi ext4dev-kmp-xen kernel-default kernel-default-base kernel-pae kernel-pae-base kernel-source kernel-syms...

SLES11: Security update for Linux kernel

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: ext4dev-kmp-default ext4dev-kmp-pae ext4dev-kmp-vmi ext4dev-kmp-xen kernel-default kernel-default-base kernel-pae kernel-pae-base kernel-source kernel-syms...