Lucene search
K

49 matches found

UbuntuCve
UbuntuCve
added 2018/12/20 12:0 a.m.25 views

CVE-2018-20126

hw/rdma/vmw/pvrdmacmd.c in QEMU allows createcq and createqp memory leaks because errors are mishandled...

5.5CVSS6.8AI score0.0049EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2018/12/19 7:20 a.m.27 views

CVE-2018-20216

QEMU can have an infinite loop in hw/rdma/vmw/pvrdmadevring.c because return values are not checked and -1 is mishandled...

7.5CVSS1.6AI score0.03879EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2018/12/17 12:0 a.m.31 views

CVE-2018-20123

pvrdmarealize in hw/rdma/vmw/pvrdmamain.c in QEMU has a Memory leak after an initialisation error...

5.5CVSS6.8AI score0.00488EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2018/04/10 3:23 p.m.4 views

kernel: drm/vmwgfx: fix integer overflow in vmw_surface_define_ioctl()

An out-of-bounds write vulnerability was found in the Linux kernel's vmwsurfacedefineioctl function, in the 'drivers/gpu/drm/vmwgfx/vmwgfxsurface.c' file. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is unlikely...

7.8CVSS7.1AI score0.0038EPSS
Exploits0References4
Talos
Talos
added 2017/12/19 12:0 a.m.43 views

VMware VNC Dynamic Resolution Request Code Execution Vulnerability

Summary An exploitable code execution vulnerability exists in the remote management functionality of VMware . A specially crafted set of VNC packets can cause a heap overflow resulting in heap corruption. An attacker can create a VNC session to trigger this vulnerability. Tested Versions Vase,...

8.8CVSS8.9AI score0.03571EPSS
Exploits1
Prion
Prion
added 2017/05/02 2:59 p.m.17 views

Design/Logic Flaw

hw/scsi/vmwpvscsi.c in QEMU aka Quick Emulator allows local guest OS privileged users to cause a denial of service infinite loop and CPU consumption via the message ring page count...

4.9CVSS7AI score0.00408EPSS
Exploits0References6Affected Software2
CNVD
CNVD
added 2017/03/30 12:0 a.m.3 views

Linux kernel local denial of service vulnerability (CNVD-2017-04601)

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A security vulnerability exists in the 'vmwsurfacedefineioctl' function in the drivers/gpu/drm/vmwgfx/vmwgfxsurface.c file in Linux kernel 4.10.6 and earlier. A local attacker...

7.8CVSS6.9AI score0.0038EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2017/03/27 12:0 a.m.5 views

PT-2017-2269 · Linux +5 · Linux Kernel +5

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.10.6 Description: The issue is caused by an integer overflow in the vmw surface define ioctl function. This can be exploited by a local attacker to cause a denial of service, such as a system hang or crash, or...

10CVSS7.9AI score0.84172EPSS
Exploits111References852
securityvulns
securityvulns
added 2013/07/29 12:0 a.m.106 views

Microsoft Windows multiple security vulnerabilities

Multiple vulnerabilities in .Net and Silverlight, multiple kernel components vulnerabilities, GDI+ TrueType parsing memory corruption, DirectShow memory corruption, VMW parsing memory corruption, multiple Internet Explorer memory corruption, Windows Defender privilege escalation...

9.3CVSS3.2AI score0.70676EPSS
Exploits42References1Affected Software1
Rows per page
Query Builder