05138803331

Faculty of Engineering, Ferdowsi University of Mashhad, Mashhad, Khorasan Razavi, Iran

0

basket

  • فارسی
    • 0

    سبد خرید

    Last Articles

    article
    High level vulnerability in cisco
    فروردین ۷ , ۱۴۰۲
    Read more
    article
    CRITICAL level vulnerability inMicrosoft Outlook
    فروردین ۷ , ۱۴۰۲
    Read more
    article
    CRITICAL level vulnerability in WordPress plugin
    اسفند ۲۱ , ۱۴۰۱
    Read more

    Categories

    high level vulnerability in Linux

    high level vulnerability in Linux

    CVE-2022-2196

    Description

    A regression exists in the Linux Kernel within KVM: nVMX that allowed for speculative execution attacks. L2 can carry out Spectre v2 attacks on L1 due to L1 thinking it doesn’t need retpolines or IBPB after running L2 due to KVM (L0) advertising eIBRS support to L1. An attacker at L2 with code execution can execute code on an indirect branch on the host machine. We recommend upgrading to Kernel 6.2 or past commit 2e7eab81425a

    Base Score: 8.8 HIGH

    https://kernel.dance/#2e7eab81425a

    Security News
    high level vulnerability in wordpress

    Leave a Reply

    Your email address will not be published. Required fields are marked *

    Related Articles

    article
    high level vulnerability in Linux

    CVE-2022-42255 Description NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko), where an out-of-bounds array access may lead to denial of service, information disclosure, or data tampering. Base Score: 7.8 HIGH https://nvidia.custhelp.com/app/answers/detail/a_id/5415 ___________________________________________ CVE-2022-34676 Description NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer handler, […]

    Category:
    دی ۱۷ , ۱۴۰۱
    Read more
    article
    high level vulnerability in Cisco

    CVE-2022-20803 Description A vulnerability in the OLE2 file parser of Clam AntiVirus (ClamAV) versions 0.104.0 through 0.104.2 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device.The vulnerability is due to incorrect use of the realloc function that may result in a double-free. An attacker could exploit this […]

    Category:
    بهمن ۳۰ , ۱۴۰۱
    Read more
    article
    high level vulnerability in Microsoft Corporation(part1)

    CVE-2023-23381 Description Visual Studio Remote Code Execution Vulnerability Base Score: 8.4 HIGH https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-23381   CVE-2023-21823 Description Windows Graphics Component Remote Code Execution Vulnerability Base Score: 7.8 HIGH https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21823   CVE-2023-21815 Description Visual Studio Remote Code Execution Vulnerability Base Score: 8.4 HIGH https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21815   CVE-2023-21808 Description .NET and Visual Studio Remote Code Execution Vulnerability Base Score: 7.8 HIGH https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21808 ________________________________________________­­­­­______ […]

    Category:
    بهمن ۲۶ , ۱۴۰۱
    Read more

    Contact us

    Address: Mashhad, Ferdowsi University of Mashhad, Faculty of Engineering, APA Specialized Center
    Phone number: 05138803331
    Working hours: 8 am to 4 pm
    [email protected]

    Links

    © All rights reserved to APA Specialized Center of Ferdowsi University of Mashhad