Lucene search
K

13053 matches found

CISA KEV Catalog
CISA KEV Catalog
added 2025/10/30 12:0 a.m.14 views

Broadcom VMware Aria Operations and VMware Tools Privilege Defined with Unsafe Actions Vulnerability

Broadcom VMware Aria Operations and VMware Tools contain a privilege defined with unsafe actions vulnerability. A malicious local actor with non-administrative privileges having access to a VM with VMware Tools installed and managed by Aria Operations with SDMP enabled may exploit this...

7.8CVSS6.9AI score0.0788EPSS
In wildExploits3
Ubuntu
Ubuntu
added 2025/10/24 8:2 a.m.5 views

USN-7795-4: Linux kernel (Oracle) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Ext4 file system; - Network file system NFS server daemon; - Packet sockets; - Network traffic control; - VMware...

7.8CVSS7.1AI score0.00288EPSS
Exploits0
OSV
OSV
added 2025/10/24 8:2 a.m.7 views

USN-7795-4 linux-oracle-5.4 vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Ext4 file system; - Network file system NFS server daemon; - Packet sockets; - Network traffic control; - VMware...

7.8CVSS6.7AI score0.00288EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2025/10/24 12:0 a.m.3 views

VMware Spring Framework < 5.3.46, 6.0.x < 6.1.24, 6.2.x < 6.2.12 CSRF Vulnerability - Windows

The VMware Spring Framework is prone to a STOMP cross-site request forgery CSRF vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

4.3CVSS7AI score0.00286EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/10/24 12:0 a.m.4 views

VMware Spring Framework < 5.3.46, 6.0.x < 6.1.24, 6.2.x < 6.2.12 CSRF Vulnerability - Linux

The VMware Spring Framework is prone to a STOMP cross-site request forgery CSRF vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

4.3CVSS7AI score0.00286EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/10/22 12:0 a.m.9 views

TencentOS Server 4: open-vm-tools (TSSA-2025:0776)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0776 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

7.8CVSS7.9AI score0.0788EPSS
Exploits3References2
Ubuntu
Ubuntu
added 2025/10/21 10:13 p.m.6 views

USN-7819-2: Linux kernel (Azure FIPS) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Network drivers; - Device tree and open firmware driver; - SCSI subsystem; - TTY drivers; - Ext4 file system; -...

9.8CVSS7.1AI score0.01483EPSS
Exploits0
OSV
OSV
added 2025/10/21 10:13 p.m.11 views

USN-7819-2 linux-azure-fips vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Network drivers; - Device tree and open firmware driver; - SCSI subsystem; - TTY drivers; - Ext4 file system; -...

9.8CVSS6.8AI score0.01483EPSS
Exploits0References17
Ubuntu
Ubuntu
added 2025/10/21 9:18 p.m.6 views

USN-7797-3: Linux kernel (AWS) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Virtio block driver; - Media drivers; - Network drivers; - Framebuffer layer; - BTRFS file system; - Ext4 file...

7.8CVSS7AI score0.00291EPSS
Exploits0
OSV
OSV
added 2025/10/21 9:18 p.m.7 views

USN-7797-3 linux-aws vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Virtio block driver; - Media drivers; - Network drivers; - Framebuffer layer; - BTRFS file system; - Ext4 file...

7.8CVSS6.7AI score0.00291EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2025/10/16 12:0 a.m.8 views

Alibaba Cloud Linux 3 : 0159: open-vm-tools (ALINUX3-SA-2025:0159)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2025:0159 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2025-41244: VMware Aria Operations and VMware...

7.8CVSS7.9AI score0.0788EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2025/10/15 12:0 a.m.2 views

Ubuntu 18.04 LTS / 20.04 LTS : Linux kernel (Azure) vulnerabilities (USN-7819-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7819-1 advisory. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update...

9.8CVSS7.2AI score0.01483EPSS
Exploits0References17
Tenable Nessus
Tenable Nessus
added 2025/10/15 12:0 a.m.8 views

Amazon Linux 2023 : open-vm-tools, open-vm-tools-desktop, open-vm-tools-devel (ALAS2023-2025-1226)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-1226 advisory. VMware Aria Operations and VMware Tools contain a local privilege escalation vulnerability. A malicious local actor with non-administrative privileges having access to a VM with VMware Tools installed...

7.8CVSS7.9AI score0.0788EPSS
Exploits3References4
Ubuntu
Ubuntu
added 2025/10/14 4:10 p.m.4 views

USN-7810-3: Linux kernel (Azure FIPS) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Network drivers; - Packet sockets; - Network traffic control; - VMware vSockets driver; CVE-2025-38477,...

7.8CVSS7AI score0.00288EPSS
Exploits0
OSV
OSV
added 2025/10/14 4:10 p.m.4 views

USN-7810-3 linux-azure-fips vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Network drivers; - Packet sockets; - Network traffic control; - VMware vSockets driver; CVE-2025-38477,...

7.8CVSS6.4AI score0.00288EPSS
Exploits0References5
Ubuntu
Ubuntu
added 2025/10/14 4:7 p.m.4 views

USN-7810-2: Linux kernel (Azure) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Network drivers; - Packet sockets; - Network traffic control; - VMware vSockets driver; CVE-2025-38617,...

7.8CVSS7AI score0.00288EPSS
Exploits0
OSV
OSV
added 2025/10/14 4:7 p.m.8 views

USN-7810-2 linux-azure-5.15 vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Network drivers; - Packet sockets; - Network traffic control; - VMware vSockets driver; CVE-2025-38617,...

7.8CVSS6.5AI score0.00288EPSS
Exploits0References5
OSV
OSV
added 2025/10/14 4:0 p.m.8 views

USN-7808-2 linux-azure-6.8 vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Network drivers; - Ext4 file system; - SMB network file system; - Packet sockets; - Network traffic control; - TLS...

7.8CVSS6.7AI score0.00288EPSS
Exploits0References9
Ubuntu
Ubuntu
added 2025/10/14 4:0 p.m.11 views

USN-7808-2: Linux kernel (Azure) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Network drivers; - Ext4 file system; - SMB network file system; - Packet sockets; - Network traffic control; - TLS...

7.8CVSS7.1AI score0.00288EPSS
Exploits0
Ubuntu
Ubuntu
added 2025/10/14 3:52 p.m.5 views

USN-7821-1: Linux kernel (Raspberry Pi) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Packet sockets; - Network traffic control; - VMware vSockets driver; - XFRM subsystem; CVE-2025-38500,...

7.8CVSS7AI score0.00288EPSS
Exploits0
Rows per page
Query Builder