x86/HVM pinned cache attributes mis-handling T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] To allow cachability…

x86: speculative vulnerability in 32bit SYSCALL path Due to an oversight in the very original Spectre/Meltdown security work (XSA-254), one entrypath performs its speculation-safety actions…

x86 shadow plus log-dirty mode use-after-free In environments where host assisted address translation is necessary but Hardware Assisted Paging (HAP) is unavailable, Xen will run…

Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in Pacsrapor allows SQL Injection, Command Line Execution through SQL Injection.This issue…

Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in Pacsrapor allows Reflected XSS.This issue affects Pacsrapor: before 1.22. Zafiyet ile ilgili Genel…

A vulnerability has been discovered in cloudflared’s installer (<= 2023.3.0) for Windows 32-bits devices that allows a local attacker with no administrative permissions to escalate…

A vulnerability has been found in Ydalb mapicoin up to 1.9.0 and classified as problematic. This vulnerability affects unknown code of the file webroot/stats.php. The…

Authorization Bypass Through User-Controlled Key vulnerability in Vadi Corporate Information Systems DigiKent allows Authentication Bypass, Authentication Abuse. This issue affects DigiKent: before 23.03.20. Zafiyet ile…