Lucene search
+L

291 matches found

Cvelist
Cvelist
added 2024/05/14 12:58 p.m.43 views

CVE-2024-22267

VMware Workstation and Fusion contain a use-after-free vulnerability in the vbluetooth device. A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual machine's VMX process running on the host...

9.3CVSS9.5AI score0.00684EPSS
Exploits0References1
CVE
CVE
added 2024/05/14 12:58 p.m.111 views

CVE-2024-22267

CVE-2024-22267 affects VMware Workstation and Fusion. A use-after-free in the vbluetooth device can allow a malicious actor with local privileges inside a VM to execute code in the host VMX process. The issue is documented with high/severe impact (confidentiality/integrity/availability at risk). ...

9.3CVSS9.1AI score0.00684EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2024/03/06 7:15 a.m.17 views

CVE-2023-52606

In the Linux kernel, the following vulnerability has been resolved: powerpc/lib: Validate size for vector operations Some of the fp/vmx code in sstep.c assume a certain maximum size for the instructions being emulated. The size of those operations however is determined separately in analyseinstr...

5.5CVSS7.3AI score0.00234EPSS
Exploits0References9
Prion
Prion
added 2024/03/06 7:15 a.m.20 views

Stack overflow

In the Linux kernel, the following vulnerability has been resolved: powerpc/lib: Validate size for vector operations Some of the fp/vmx code in sstep.c assume a certain maximum size for the instructions being emulated. The size of those operations however is determined separately in analyseinstr...

7.1AI score0.00234EPSS
Exploits0References8
Vulnrichment
Vulnrichment
added 2024/03/06 6:45 a.m.26 views

CVE-2023-52606 powerpc/lib: Validate size for vector operations

In the Linux kernel, the following vulnerability has been resolved: powerpc/lib: Validate size for vector operations Some of the fp/vmx code in sstep.c assume a certain maximum size for the instructions being emulated. The size of those operations however is determined separately in analyseinstr...

6.7AI score0.00234EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2024/03/06 4:52 a.m.11 views

SUSE CVE-2021-47092

In the Linux kernel, the following vulnerability has been resolved: KVM: VMX: Always clear vmx-fail on emulationrequired Revert a relatively recent change that set vmx-fail if the vCPU is in L2 and emulationrequired is true, as that behavior is completely bogus. Setting vmx-fail and synthesizing ...

5.5CVSS6.5AI score0.00288EPSS
Exploits1References3
NVD
NVD
added 2024/03/05 6:15 p.m.12 views

CVE-2024-22255

VMware ESXi, Workstation, and Fusion contain an information disclosure vulnerability in the UHCI USB controller. A malicious actor with administrative access to a virtual machine may be able to exploit this issue to leak memory from the vmx process...

7.1CVSS7.7AI score0.02311EPSS
Exploits0References1
OSV
OSV
added 2024/03/05 6:15 p.m.4 views

CVE-2024-22255

VMware ESXi, Workstation, and Fusion contain an information disclosure vulnerability in the UHCI USB controller. A malicious actor with administrative access to a virtual machine may be able to exploit this issue to leak memory from the vmx process...

7.1CVSS7.3AI score0.02311EPSS
Exploits0References1
OSV
OSV
added 2024/03/05 6:15 p.m.4 views

CVE-2024-22253

VMware ESXi, Workstation, and Fusion contain a use-after-free vulnerability in the UHCI USB controller. A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual machine's VMX process running on the host. On ESXi, the...

6.7CVSS7.7AI score0.00645EPSS
Exploits0References1
NVD
NVD
added 2024/03/05 6:15 p.m.21 views

CVE-2024-22252

VMware ESXi, Workstation, and Fusion contain a use-after-free vulnerability in the XHCI USB controller. A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual machine's VMX process running on the host. On ESXi, the...

9.3CVSS9.5AI score0.03542EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/03/05 5:58 p.m.20 views

CVE-2024-22255 Information disclosure vulnerability

VMware ESXi, Workstation, and Fusion contain an information disclosure vulnerability in the UHCI USB controller. A malicious actor with administrative access to a virtual machine may be able to exploit this issue to leak memory from the vmx process...

7.1CVSS6.3AI score0.02311EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/03/05 5:57 p.m.33 views

CVE-2024-22253 Use-after-free vulnerability

VMware ESXi, Workstation, and Fusion contain a use-after-free vulnerability in the UHCI USB controller. A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual machine's VMX process running on the host. On ESXi, the...

9.3CVSS9.7AI score0.00645EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/03/05 5:57 p.m.26 views

CVE-2024-22253 Use-after-free vulnerability

VMware ESXi, Workstation, and Fusion contain a use-after-free vulnerability in the UHCI USB controller. A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual machine's VMX process running on the host. On ESXi, the...

9.3CVSS7.7AI score0.00645EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/03/05 5:57 p.m.22 views

CVE-2024-22252 Use-after-free vulnerability

VMware ESXi, Workstation, and Fusion contain a use-after-free vulnerability in the XHCI USB controller. A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual machine's VMX process running on the host. On ESXi, the...

9.3CVSS7.7AI score0.03542EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/03/05 5:57 p.m.36 views

CVE-2024-22252 Use-after-free vulnerability

VMware ESXi, Workstation, and Fusion contain a use-after-free vulnerability in the XHCI USB controller. A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual machine's VMX process running on the host. On ESXi, the...

9.3CVSS9.7AI score0.03542EPSS
Exploits0References1
NVD
NVD
added 2024/03/04 6:15 p.m.36 views

CVE-2021-47092

In the Linux kernel, the following vulnerability has been resolved: KVM: VMX: Always clear vmx-fail on emulationrequired Revert a relatively recent change that set vmx-fail if the vCPU is in L2 and emulationrequired is true, as that behavior is completely bogus. Setting vmx-fail and synthesizing ...

5.5CVSS6.3AI score0.00288EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2024/03/04 6:15 p.m.40 views

CVE-2021-47092

In the Linux kernel, the following vulnerability has been resolved: KVM: VMX: Always clear vmx-fail on emulationrequired Revert a relatively recent change that set vmx-fail if the vCPU is in L2 and emulationrequired is true, as that behavior is completely bogus. Setting vmx-fail and synthesizing ...

5.5CVSS5.9AI score0.00288EPSS
Exploits1References4
CVE
CVE
added 2024/03/04 6:10 p.m.71 views

CVE-2021-47092

Summary: CVE-2021-47092 relates to a Linux kernel KVM VMX issue where setting vmx->fail during emulation_required in L2 nesting was incorrect, potentially causing a VM-Exit/VM-Fail contradiction and a warning during teardown (nested_vmx_vmexit). The fix reverts that change so vmx->fail is n...

5.5CVSS6.5AI score0.00288EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/03/04 6:10 p.m.25 views

CVE-2021-47092 KVM: VMX: Always clear vmx->fail on emulation_required

In the Linux kernel, the following vulnerability has been resolved: KVM: VMX: Always clear vmx-fail on emulationrequired Revert a relatively recent change that set vmx-fail if the vCPU is in L2 and emulationrequired is true, as that behavior is completely bogus. Setting vmx-fail and synthesizing ...

6.7AI score0.00288EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/03/04 6:10 p.m.33 views

CVE-2021-47092 KVM: VMX: Always clear vmx->fail on emulation_required

In the Linux kernel, the following vulnerability has been resolved: KVM: VMX: Always clear vmx-fail on emulationrequired Revert a relatively recent change that set vmx-fail if the vCPU is in L2 and emulationrequired is true, as that behavior is completely bogus. Setting vmx-fail and synthesizing ...

6.6AI score0.00288EPSS
Exploits1References2
Rows per page
Query Builder