05138803331

Faculty of Engineering, Ferdowsi University of Mashhad, Mashhad, Khorasan Razavi, Iran

0

basket

  • فارسی
    • 0

    سبد خرید

    Last Articles

    article
    High level vulnerability in cisco
    فروردین ۷ , ۱۴۰۲
    Read more
    article
    CRITICAL level vulnerability inMicrosoft Outlook
    فروردین ۷ , ۱۴۰۲
    Read more
    article
    CRITICAL level vulnerability in WordPress plugin
    اسفند ۲۱ , ۱۴۰۱
    Read more

    Categories

    high level vulnerability in Linux

    high level vulnerability in Linux

    CVE-2022-2196

    Description

    A regression exists in the Linux Kernel within KVM: nVMX that allowed for speculative execution attacks. L2 can carry out Spectre v2 attacks on L1 due to L1 thinking it doesn’t need retpolines or IBPB after running L2 due to KVM (L0) advertising eIBRS support to L1. An attacker at L2 with code execution can execute code on an indirect branch on the host machine. We recommend upgrading to Kernel 6.2 or past commit 2e7eab81425a

    Base Score: 8.8 HIGH

    https://kernel.dance/#2e7eab81425a

    Security News
    high level vulnerability in wordpress

    Leave a Reply

    Your email address will not be published. Required fields are marked *

    Related Articles

    article
    high level vulnerability in adobe

    CVE-2023-21589 Description Adobe InDesign version 18.0 (and earlier), 17.4 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Base Score: 7.8 HIGH https://helpx.adobe.com/security/products/indesign/apsb23-07.html   _____________________________________________________________________ CVE-2023-21588 […]

    Category:
    بهمن ۱ , ۱۴۰۱
    Read more
    article
    high level vulnerability in Microsoft Corporation(part3)

    CVE-2023-21803 Description Windows iSCSI Discovery Service Remote Code Execution Vulnerability Base Score: 9.8 CRITICAL https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21803   CVE-2023-21804 Description Windows Graphics Component Elevation of Privilege Vulnerability Base Score: 7.8 HIGH https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21804   CVE-2023-21805 Description Windows MSHTML Platform Remote Code Execution Vulnerability Base Score: 7.8 HIGH https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21805   CVE-2023-21806 Description Power BI Report Server Spoofing Vulnerability Base Score: 8.2 HIGH https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21806 […]

    Category:
    بهمن ۲۶ , ۱۴۰۱
    Read more
    article
    high level vulnerability in McAfee

    CVE-2020-7346 Description Privilege Escalation vulnerability in McAfee Data Loss Prevention (DLP) for Windows prior to 11.6.100 allows a local, low privileged, attacker through the use of junctions to cause the product to load DLLs of the attacker’s choosing. This requires the creation and removal of junctions by the attacker along with sending a specific IOTL […]

    Category:
    بهمن ۲۴ , ۱۴۰۱
    Read more

    Contact us

    Address: Mashhad, Ferdowsi University of Mashhad, Faculty of Engineering, APA Specialized Center
    Phone number: 05138803331
    Working hours: 8 am to 4 pm
    cert@um.ac.ir

    Links

    © All rights reserved to APA Specialized Center of Ferdowsi University of Mashhad