Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vm server vulnerabilities and exploits
(subscribe to this query)
2.1
CVSSv2
CVE-2021-38198
arch/x86/kvm/mmu/paging_tmpl.h in the Linux kernel prior to 5.12.11 incorrectly computes the access permissions of a shadow page, leading to a missing guest protection page fault.
Linux Linux Kernel
Debian Debian Linux 9.0
3.3
CVSSv2
CVE-2021-38199
fs/nfs/nfs4client.c in the Linux kernel prior to 5.13.4 has incorrect connection-setup ordering, which allows operators of remote NFSv4 servers to cause a denial of service (hanging of mounts) by arranging for those servers to be unreachable during trunking detection.
Linux Linux Kernel
Netapp Hci Bootstrap Os -
Netapp Hci Management Node -
Netapp Solidfire -
Netapp Element Software -
Debian Debian Linux 9.0
Debian Debian Linux 11.0
7.2
CVSSv2
CVE-2021-38160
In drivers/char/virtio_console.c in the Linux kernel prior to 5.13.4, data corruption or loss can be triggered by an untrusted device that supplies a buf->len value exceeding the buffer size. NOTE: the vendor indicates that the cited data corruption is not a vulnerability in a...
Linux Linux Kernel
Netapp Hci Bootstrap Os -
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Element Software -
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Redhat Enterprise Linux 8.0
2.1
CVSSv2
CVE-2021-3655
A vulnerability was found in the Linux kernel in versions prior to v5.14-rc1. Missing size validations on inbound SCTP packets may allow the kernel to read uninitialized memory.
Linux Linux Kernel 5.14
Linux Linux Kernel
Redhat Enterprise Linux 8.0
Debian Debian Linux 9.0
2.1
CVSSv2
CVE-2021-3679
A lack of CPU resource in the Linux kernel tracing module functionality in versions before 5.14-rc3 was found in the way user uses trace ring buffer in a specific way. Only privileged local users (with CAP_SYS_ADMIN capability) could use this flaw to starve the resources causing ...
Linux Linux Kernel 5.14
Linux Linux Kernel
Redhat Enterprise Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
7.2
CVSSv2
CVE-2021-37576
arch/powerpc/kvm/book3s_rtas.c in the Linux kernel up to and including 5.13.5 on the powerpc platform allows KVM guest OS users to cause host OS memory corruption via rtas_args.nargs, aka CID-f62f3c20647e.
Linux Linux Kernel
Fedoraproject Fedora 33
Fedoraproject Fedora 34
4
CVSSv2
CVE-2021-2438
Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1 and 19c. Easily exploitable vulnerability allows low privileged attacker having Create Procedure privilege with network access via Oracle Net to compromis...
Oracle Java Virtual Machine 12.1.0.2
Oracle Java Virtual Machine 12.2.0.1
Oracle Java Virtual Machine 19c
4.7
CVSSv2
CVE-2021-33624
In kernel/bpf/verifier.c in the Linux kernel prior to 5.12.13, a branch can be mispredicted (e.g., because of type confusion) and consequently an unprivileged BPF program can read arbitrary memory locations via a side-channel attack, aka CID-9183671af6db.
Linux Linux Kernel
Debian Debian Linux 9.0
1 Github repository
9
CVSSv2
CVE-2020-12967
The lack of nested page table protection in the AMD SEV/SEV-ES feature could potentially lead to arbitrary code execution within the guest VM if a malicious administrator has access to compromise the server hypervisor.
Amd Epyc 7232p -
Amd Epyc 7251 -
Amd Epyc 7252 -
Amd Epyc 7261 -
Amd Epyc 7262 -
Amd Epyc 7272 -
Amd Epyc 7281 -
Amd Epyc 7282 -
Amd Epyc 72f3 -
Amd Epyc 7301 -
Amd Epyc 7302 -
Amd Epyc 7302p -
Amd Epyc 7313 -
Amd Epyc 7313p -
Amd Epyc 7343 -
Amd Epyc 7351 -
Amd Epyc 7351p -
Amd Epyc 7352 -
Amd Epyc 7371 -
Amd Epyc 73f3 -
Amd Epyc 7401 -
Amd Epyc 7401p -
9
CVSSv2
CVE-2021-26311
In the AMD SEV/SEV-ES feature, memory can be rearranged in the guest address space that is not detected by the attestation mechanism which could be used by a malicious hypervisor to potentially lead to arbitrary code execution within the guest VM if a malicious administrator has ...
Amd Epyc 7232p -
Amd Epyc 7251 -
Amd Epyc 7252 -
Amd Epyc 7261 -
Amd Epyc 7262 -
Amd Epyc 7272 -
Amd Epyc 7281 -
Amd Epyc 7282 -
Amd Epyc 72f3 -
Amd Epyc 7301 -
Amd Epyc 7302 -
Amd Epyc 7302p -
Amd Epyc 7351 -
Amd Epyc 7351p -
Amd Epyc 7371 -
Amd Epyc 7401 -
Amd Epyc 7401p -
Amd Epyc 7451 -
Amd Epyc 7501 -
Amd Epyc 7513 -
Amd Epyc 7453 -
Amd Epyc 74f3 -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »