Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vm vulnerabilities and exploits
(subscribe to this query)
4.9
CVSSv2
CVE-2015-4856
Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox prior to 4.0.30, 4.1.38, 4.2.30, 4.3.26, and 5.0.0 allows local users to affect availability via unknown vectors related to Core.
Oracle Vm Virtualbox 4.0.29
Oracle Vm Virtualbox 4.1.37
Oracle Vm Virtualbox 4.2.29
Oracle Vm Virtualbox 4.3.25
4.3
CVSSv2
CVE-2021-24172
The VM Backups WordPress plugin up to and including 1.0 does not have CSRF checks, allowing malicious users to make a logged in user unwanted actions, such as generate backups of the DB, plugins, and current .
Vm Backups Project Vm Backups
5.8
CVSSv2
CVE-2021-21413
isolated-vm is a library for nodejs which gives you access to v8's Isolate interface. Versions of isolated-vm before v4.0.0 have API pitfalls which may make it easy for implementers to expose supposed secure isolates to the permissions of the main nodejs isolate. Reference o...
Isolated-vm Project Isolated-vm
5
CVSSv2
CVE-2020-27173
In vm-superio prior to 0.1.1, the serial console FIFO can grow to unlimited memory usage when data is sent to the input source (i.e., standard input). This behavior cannot be reproduced from the guest side. When no rate limiting is in place, the host can be subject to memory pres...
Vm-superio Project Vm-superio
1 Github repository
NA
CVE-2023-41051
In a typical Virtual Machine Monitor (VMM) there are several components, such as boot loader, virtual device drivers, virtio backend drivers and vhost drivers, that need to access the VM physical memory. The vm-memory rust crate provides a set of traits to decouple VM memory cons...
Vm-memory Project Vm-memory
7.5
CVSSv2
CVE-2007-2575
PHP remote file inclusion vulnerability in watermark.php in the vm (aka Jean-Francois Laflamme) watermark 0.4.1 mod for Gallery allows remote malicious users to execute arbitrary PHP code via a URL in the GALLERY_BASEDIR parameter.
Vm Watermark Vm Watermark 0.4.1
1 EDB exploit
4.3
CVSSv2
CVE-2021-24173
The VM Backups WordPress plugin up to and including 1.0 does not have CSRF checks, allowing malicious users to make a logged in user unwanted actions, such as update the plugin's options, leading to a Stored Cross-Site Scripting issue.
Vm Backups Project Vm Backups
5
CVSSv2
CVE-2020-13759
rust-vmm vm-memory prior to 0.1.1 and 0.2.x prior to 0.2.1 allows malicious users to cause a denial of service (loss of IP networking) because read_obj and write_obj do not properly access memory. This affects aarch64 (with musl or glibc) and x86_64 (with musl).
Vm-memory Project Vm-memory
NA
CVE-2022-39266
isolated-vm is a library for nodejs which gives the user access to v8's Isolate interface. In versions 4.3.6 and prior, if the untrusted v8 cached data is passed to the API through CachedDataOptions, attackers can bypass the sandbox and run arbitrary code in the nodejs proce...
Isolated-vm Project Isolated-vm
5
CVSSv2
CVE-2018-19183
ethereumjs-vm 2.4.0 allows malicious users to cause a denial of service (vm.runCode failure and REVERT) via a "code: Buffer.from(my_code, 'hex')" attribute. NOTE: the vendor disputes this because REVERT is a normal bytecode that can be triggered from high-leve...
Ethereumjs-vm Project Ethereumjs-vm 2.4.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-26978
CVE-2024-26982
wireless
CVE-2023-6949
CVE-2024-26980
CVE-2024-32766
CVE-2024-26939
cache poisoning
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »