CVE-2024-31146 | Xen PCI Device access control

Inserito da Angelo Barbosa | Ago 14, 2024 | CVE

A vulnerability was found in Xen and classified as critical. This issue affects some unknown processing of the component PCI Device Handler. The manipulation leads to improper access controls.

The identification of this vulnerability is CVE-2024-31146. The attack needs to be initiated within the local network. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-31146 | Xen PCI Device access control

Post correlati

CVE-2023-47167 | TP-Link ER7206 Omada Gigabit VPN Router 1.3.0 Build 20230322 Rel.70591 GRE Policy os command injection (TALOS-2023-1855)

CVE-2022-3899 | 3dprint Plugin up to 3.5.6.8 on WordPress cross-site request forgery

CVE-2024-28851 | snowflakedb snowflake-hive-metastore-connector privileges management (GHSA-r68p-g2x9-mq7x)

CVE-2024-22433 | Dell Data Protection Search up to 19.6.3 LdapSettings.get_ldap_info file information disclosure (dsa-2024-063)