Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
openvz vulnerabilities and exploits
(subscribe to this query)
3.6
CVSSv2
CVE-2015-6927
vzctl prior to 4.9.4 determines the virtual environment (VE) layout based on the presence of root.hdd/DiskDescriptor.xml in the VE private directory, which allows local simfs container (CT) root users to change the root password for arbitrary ploop containers, as demonstrated by ...
Openvz Vzctl
4.9
CVSSv2
CVE-2014-3519
The open_by_handle_at function in vzkernel prior to 042stab090.5 in the OpenVZ modification for the Linux kernel 2.6.32, when using simfs, might allow local container users with CAP_DAC_READ_SEARCH capability to bypass an intended container protection mechanism and access arbitra...
Openvz Vzkernel 2.6.32
1 Github repository
4.7
CVSSv2
CVE-2013-2239
vzkernel prior to 042stab080.2 in the OpenVZ modification for the Linux kernel 2.6.32 does not initialize certain length variables, which allows local users to obtain sensitive information from kernel stack memory via (1) a crafted ploop driver ioctl call, related to the ploop_ge...
Openvz Vzkernel 2.6.32
10
CVSSv2
CVE-2013-6838
An unspecified Enghouse Interactive Professional Services "addon product" in Enghouse Interactive IVR Pro (VIP2000) 9.0.3 (rel903), when using OpenVZ and fallback customization, uses the same SSH private key across different customers' installations, which allows r...
Enghouseinteractive Ivr Pro 9.0.3
2.1
CVSSv2
CVE-2006-1056
The Linux kernel prior to 2.6.16.9 and the FreeBSD kernel, when running on AMD64 and other 7th and 8th generation AuthenticAMD processors, only save/restore the FOP, FIP, and FDP x87 registers in FXSAVE/FXRSTOR when an exception is pending, which allows one process to determine p...
Linux Linux Kernel 2.6.0
Linux Linux Kernel 2.6.10
Linux Linux Kernel 2.6.11.2
Linux Linux Kernel 2.6.11.3
Linux Linux Kernel 2.6.11
Linux Linux Kernel 2.6.12.5
Linux Linux Kernel 2.6.12.6
Linux Linux Kernel 2.6.13
Linux Linux Kernel 2.6.13.1
Linux Linux Kernel 2.6.14.5
Linux Linux Kernel 2.6.14.6
Linux Linux Kernel 2.6.15
Linux Linux Kernel 2.6.15.1
Linux Linux Kernel 2.6.16.3
Linux Linux Kernel 2.6.16.4
Linux Linux Kernel 2.6.16 Rc7
Linux Linux Kernel 2.6.2
Linux Linux Kernel 2.6.3
Linux Linux Kernel 2.6.4
Linux Linux Kernel 2.6.5
Linux Linux Kernel 2.6.6
Linux Linux Kernel 2.6.7
4.9
CVSSv2
CVE-2006-1528
Linux kernel prior to 2.6.13 allows local users to cause a denial of service (crash) via a dio transfer from the sg driver to memory mapped (mmap) IO space.
Linux Linux Kernel 2.6.11
Linux Linux Kernel 2.6.8.1.5
Linux Linux Kernel 2.6.4
Linux Linux Kernel 2.6.12
Linux Linux Kernel 2.6.11.2
Linux Linux Kernel 2.6.5
Linux Linux Kernel 2.6.11.10
Linux Linux Kernel 2.6.10
Linux Linux Kernel 2.6.7
Linux Linux Kernel 2.6.3
Linux Linux Kernel 2.6.11.8
Linux Linux Kernel 2.6.11 Rc1 Bk6
Linux Linux Kernel 2.6.11.6
Linux Linux Kernel 2.6.11.11
Linux Linux Kernel 2.6.0
Linux Linux Kernel 2.6.9
Linux Linux Kernel 2.6 Test9 Cvs
Linux Linux Kernel 2.6.11.5
Linux Linux Kernel 2.6.8
Linux Linux Kernel 2.6.2
Linux Linux Kernel 2.6.6
Linux Linux Kernel 2.6.1
4.9
CVSSv2
CVE-2006-1522
The sys_add_key function in the keyring code in Linux kernel 2.6.16.1 and 2.6.17-rc1, and possibly earlier versions, allows local users to cause a denial of service (OOPS) via keyctl requests that add a key to a user key instead of a keyring key, which causes an invalid dereferen...
Linux Linux Kernel 2.6.16.1
Linux Linux Kernel 2.6.17
5
CVSSv2
CVE-2006-1527
The SCTP-netfilter code in Linux kernel prior to 2.6.16.13 allows remote malicious users to trigger a denial of service (infinite loop) via unknown vectors that cause an invalid SCTP chunk size to be processed by the for_each_sctp_chunk function.
Linux Linux Kernel 2.6.16.12
6.9
CVSSv2
CVE-2006-0038
Integer overflow in the do_replace function in netfilter for Linux prior to 2.6.16-rc3, when using "virtualization solutions" such as OpenVZ, allows local users with CAP_NET_ADMIN rights to cause a buffer overflow in the copy_from_user function.
Linux Linux Kernel 2.6.11
Linux Linux Kernel 2.6.12
Linux Linux Kernel 2.6.14
Linux Linux Kernel 2.6.5
Linux Linux Kernel 2.6.15.3
Linux Linux Kernel 2.6.1
Linux Linux Kernel 2.6.16
Linux Linux Kernel 2.6.13
Linux Linux Kernel 2.6.13.3
Linux Linux Kernel 2.6.11.8
Linux Linux Kernel 2.6.14.4
Linux Linux Kernel 2.6.10
Linux Linux Kernel 2.6.14.3
Linux Linux Kernel 2.6.11.6
Linux Linux Kernel 2.6.11.11
Linux Linux Kernel 2.6.0
Linux Linux Kernel 2.6.3
Linux Linux Kernel 2.6.4
Linux Linux Kernel 2.6 Test9 Cvs
Linux Linux Kernel 2.6.15.1
Linux Linux Kernel 2.6.11.5
Linux Linux Kernel 2.6.7
5
CVSSv2
CVE-2006-2275
Linux SCTP (lksctp) prior to 2.6.17 allows remote malicious users to cause a denial of service (deadlock) via a large number of small messages to a receiver application that cannot process the messages quickly enough, which leads to "spillover of the receive buffer."
Lksctp Stream Control Transmission Protocol
Canonical Ubuntu Linux 5.04
Canonical Ubuntu Linux 5.10
Canonical Ubuntu Linux 6.06
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
hardcoded
arbitrary code
CVE-2024-2404
CVE-2024-21111
CVE-2024-28627
CVE-2024-4073
information disclosure
CVE-2024-32780
CVE-2024-4040
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »