13053 matches found
CISA Adds One Known Exploited Vulnerability to Catalog
CISA has added one new vulnerability to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2024-37079link is external Broadcom VMware vCenter Server Out-of-bounds Write Vulnerability This type of vulnerability is a frequent attack vector for malicious...
Broadcom VMware vCenter Server Out-of-bounds Write Vulnerability
Broadcom VMware vCenter Server contains an out-of-bounds write vulnerability in the implementation of the DCERPC protocol. This could allow a malicious actor with network access to vCenter Server to send specially crafted network packets, potentially leading to remote code execution...
kernel: drm/vmwgfx: Validate command header size against SVGA_CMD_MAX_DATASIZE
In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Validate command header size against SVGACMDMAXDATASIZE This data originates from userspace and is used in buffer offset calculations which could potentially overflow causing an out-of-bounds access...
GHSA-QHR5-5M4Q-73P8 vulnerabilities
Vulnerabilities for packages: linux-vmware...
CVE-2025-21949 vulnerabilities
Vulnerabilities for packages: linux-vmware...
GHSA-JX2M-WGQ5-5QCJ vulnerabilities
Vulnerabilities for packages: linux-vmware, linux-qemu...
MiracleLinux 9 : ignition-2.14.0-1.el9 (AXSA:2023-4920:01)
The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-4920:01 advisory. ignition: configs are accessible from unprivileged containers in VMs running on VMware products CVE-2022-1706 Tenable has extracted the preceding description...
CLSA-2026-1768775579 kernel: Fix of 49 CVEs
scsi: ses: Fix slab-out-of-bounds in sesenclosuredataprocess CVE-2023-53803 - md/raid1: Fix stack memory use after return in raid1reshape CVE-2025-38445 - ALSA: usb-audio: Fix out-of-bounds read in sndusbgetaudioformatuac3 CVE-2025-38249 - atm: clip: Fix infinite recursive call of clippush...
MiracleLinux 9 : open-vm-tools-12.3.5-2.el9 (AXBA:2024-8096:03)
The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXBA:2024-8096:03 advisory. - VMware Tools contains a SAML token signature bypass vulnerability. A malicious actor that has been granted Guest Operation Privileges...
CVE-2025-39830 vulnerabilities
Vulnerabilities for packages: linux-qemu, linux-gcp, linux-aws, linux-vmware, linux-azure...
CVE-2025-23132 vulnerabilities
Vulnerabilities for packages: linux-qemu, linux-gcp, linux-aws, linux-vmware, linux-azure...
CVE-2025-39910 vulnerabilities
Vulnerabilities for packages: linux-qemu, linux-gcp, linux-aws, linux-vmware, linux-azure...
CVE-2025-37906 vulnerabilities
Vulnerabilities for packages: linux-qemu, linux-gcp, linux-aws, linux-vmware, linux-azure...
GHSA-V4W6-P754-7G2J vulnerabilities
Vulnerabilities for packages: linux-qemu, linux-gcp, linux-aws, linux-vmware, linux-azure...
GHSA-H4GM-C37Q-GJJR vulnerabilities
Vulnerabilities for packages: linux-qemu, linux-gcp, linux-aws, linux-vmware, linux-azure...
CVE-2010-4563 vulnerabilities
Vulnerabilities for packages: linux-gcp-generic, linux-qemu-melange, linux-aws-generic, linux-qemu, linux-gcp, linux-qemu-rc, linux-aws, linux-vmware, linux-azure, linux-azure-generic, linux-vmware-generic...
GHSA-CGRG-F7M4-P242 vulnerabilities
Vulnerabilities for packages: linux-gcp-generic, linux-qemu-melange, linux-aws-generic, linux-qemu, linux-gcp, linux-qemu-rc, linux-aws, linux-vmware, linux-azure, linux-azure-generic, linux-vmware-generic...
GHSA-JCH8-HV9X-VVC6 vulnerabilities
Vulnerabilities for packages: linux-qemu, linux-gcp, linux-aws, linux-vmware, linux-azure...
GHSA-XMGF-J324-J5XQ vulnerabilities
Vulnerabilities for packages: linux-qemu, linux-gcp, linux-aws, linux-vmware, linux-azure...
GHSA-XQC4-9X8W-PF49 vulnerabilities
Vulnerabilities for packages: linux-qemu, linux-gcp, linux-aws, linux-vmware, linux-azure...