CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

26 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2014-3145

Malware in sbrugna...

6.2CVSS6.3AI score0.00629EPSS

Exploits0References8

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2016-10618

Malware in sbrugna...

6.5CVSS6.7AI score0.00471EPSS

Exploits0References9

Tenable Nessus•added 2025/08/18 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2019-18423

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Xen through 4.12.x allowing ARM guest OS users to cause a denial of service via a XENMEMaddtophysmap hypercall. p2m-maxmappedgfn is...

8.8CVSS6.1AI score0.02059EPSS

Exploits0References2

CVE•added 2025/02/26 2:23 a.m.•47 views

CVE-2022-49660

Concrete details found: CVE-2022-49660 is tied to a race condition in the Linux kernel’s xen/arm RB-tree based P2M accounting. The vulnerability arises from concurrent calls to set_foreign_p2m_mapping() and clear_foreign_p2m_mapping() updating the RB-tree (set_phys_to_machine_multi), potentially ...

6.8AI score

Exploits0

Positive Technologies•added 2025/02/26 12:0 a.m.•3 views

PT-2025-8593 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A race condition exists in the Linux kernel's xen/arm component, specifically in the RB-tree based P2M accounting. The issue arises from concurrent calls to set phys to machine multi b...

4.7AI score

Exploits0References1

SUSE CVE•added 2023/02/15 5:13 a.m.•1 views

SUSE CVE-2015-7814

Race condition in the relinquishmemory function in arch/arm/domain.c in Xen 4.6.x and earlier allows local domains with partial management control to cause a denial of service host crash via vectors involving the destruction of a domain and using XENMEMdecreasereservation to reduce the memory of...

4.7CVSS6.1AI score0.00279EPSS

Exploits0References3

SUSE CVE•added 2023/02/15 3:44 a.m.•2 views

SUSE CVE-2021-28693

xen/arm: Boot modules are not scrubbed The bootloader will load boot modules e.g. kernel, initramfs... in a temporary area before they are copied by Xen to each domain memory. To ensure sensitive data is not leaked from the modules, Xen must "scrub" them before handing the page over to the...

5.1CVSS6.7AI score0.00321EPSS

Exploits0References16

SUSE CVE•added 2023/02/15 3:43 a.m.•1 views

SUSE CVE-2021-28700

xen/arm: No memory limit for dom0less domUs The dom0less feature allows an administrator to create multiple unprivileged domains directly from Xen. Unfortunately, the memory limit from them is not set. This allow a domain to allocate memory beyond what an administrator originally configured...

5.5CVSS6.9AI score0.0181EPSS

Exploits0References16

OSV•added 2022/07/31 2:55 p.m.•6 views

GSD-2022-1004922 xen/arm: Fix race in RB-tree based P2M accounting

xen/arm: Fix race in RB-tree based P2M accounting This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.9.322 by commit...

7.2AI score

Exploits0

OSV•added 2022/07/31 2:50 p.m.•10 views

GSD-2022-1004871 xen/arm: Fix race in RB-tree based P2M accounting

7.2AI score

Exploits0

OSV•added 2022/07/31 2:44 p.m.•9 views

GSD-2022-1004806 xen/arm: Fix race in RB-tree based P2M accounting

7.2AI score

Exploits0

OSV•added 2022/07/31 2:35 p.m.•9 views

GSD-2022-1004716 xen/arm: Fix race in RB-tree based P2M accounting

7.2AI score

Exploits0

OSV•added 2022/07/31 2:23 p.m.•14 views

GSD-2022-1004595 xen/arm: Fix race in RB-tree based P2M accounting

7.2AI score

Exploits0

OSV•added 2022/07/31 2:9 p.m.•7 views

GSD-2022-1004429 xen/arm: Fix race in RB-tree based P2M accounting

7.2AI score

Exploits0

OSV•added 2022/07/31 1:51 p.m.•11 views

GSD-2022-1004214 xen/arm: Fix race in RB-tree based P2M accounting

7.2AI score

Exploits0

Mageia•added 2022/07/20 8:24 p.m.•102 views

Updated kernel packages fix security vulnerabilities

This kernel update is based on upstream 5.15.55 and fixes at least the following security issues: There are use-after-free vulnerabilities caused by timer handler in net/rose/rosetimer.c of linux that allow attackers to crash linux kernel without any privileges CVE-2022-2318. Xen Block and Networ...

7.8CVSS1.2AI score0.05128EPSS

Exploits10References9

Veracode•added 2021/09/08 7:37 a.m.•17 views

Denial Of Service (DoS)

xen/arm is vulnerable to denial of service. No memory limit for dom0less domUs The dom0less feature allows an administrator to create multiple unprivileged domains directly from Xen. Unfortunately, the memory limit from them is not set. This allow a domain to allocate memory beyond what an...

4.9CVSS3.9AI score0.0181EPSS

Exploits0References12Affected Software1

Tenable Nessus•added 2021/09/04 12:0 a.m.•36 views

SUSE SLED12 / SLES12 Security Update : xen (SUSE-SU-2021:2924-1)

The remote SUSE Linux SLED12 / SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:2924-1 advisory. - Observable response discrepancy in some IntelR Processors may allow an authorized user to potentially enable information...

7.8CVSS6.2AI score0.0181EPSS

Exploits0References52