Hyper
by Vercel
Source repositories
CVEs (14)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-26156 | Hig | 0.51 | 7.8 | 0.00 | Apr 14, 2026 | Heap-based buffer overflow in Windows Hyper-V allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-7074 | Med | 0.28 | 4.3 | 0.01 | Jul 5, 2025 | A vulnerability classified as problematic has been found in vercel hyper up to 3.4.1. This affects the function expand/braceExpand/ignoreMap of the file hyper/bin/rimraf-standalone.js. The manipulation leads to inefficient regular expression complexity. It is possible to… | ||
| CVE-2024-38080 | 0.13 | — | 0.07 | KEV | Jul 9, 2024 | Windows Hyper-V Elevation of Privilege Vulnerability | ||
| CVE-2025-21334 | 0.12 | — | 0.02 | KEV | Jan 14, 2025 | Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability | ||
| CVE-2026-21248 | 0.03 | — | 0.01 | Feb 10, 2026 | Heap-based buffer overflow in Windows Hyper-V allows an authorized attacker to execute code locally. | |||
| CVE-2024-43567 | 0.01 | — | 0.02 | Oct 8, 2024 | Windows Hyper-V Denial of Service Vulnerability | |||
| CVE-2024-38127 | 0.01 | — | 0.02 | Aug 13, 2024 | Windows Hyper-V Elevation of Privilege Vulnerability | |||
| CVE-2025-62567 | 0.00 | — | 0.01 | Dec 9, 2025 | Integer underflow (wrap or wraparound) in Windows Hyper-V allows an authorized attacker to deny service over a network. | |||
| CVE-2025-54115 | 0.00 | — | 0.00 | Sep 9, 2025 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Hyper-V allows an authorized attacker to elevate privileges locally. | |||
| CVE-2025-54091 | 0.00 | — | 0.00 | Sep 9, 2025 | Integer overflow or wraparound in Windows Hyper-V allows an authorized attacker to elevate privileges locally. | |||
| CVE-2025-48807 | 0.00 | — | 0.00 | Aug 12, 2025 | Improper restriction of communication channel to intended endpoints in Windows Hyper-V allows an authorized attacker to execute code locally. | |||
| CVE-2025-53723 | 0.00 | — | 0.00 | Aug 12, 2025 | Numeric truncation error in Windows Hyper-V allows an authorized attacker to elevate privileges locally. | |||
| CVE-2025-27491 | 0.00 | — | 0.01 | Apr 8, 2025 | Use after free in Windows Hyper-V allows an authorized attacker to execute code over a network. | |||
| CVE-2024-30092 | 0.00 | — | 0.01 | Oct 8, 2024 | Windows Hyper-V Remote Code Execution Vulnerability |
- risk 0.51cvss 7.8epss 0.00
Heap-based buffer overflow in Windows Hyper-V allows an unauthorized attacker to execute code locally.
- risk 0.28cvss 4.3epss 0.01
A vulnerability classified as problematic has been found in vercel hyper up to 3.4.1. This affects the function expand/braceExpand/ignoreMap of the file hyper/bin/rimraf-standalone.js. The manipulation leads to inefficient regular expression complexity. It is possible to…
- risk 0.13cvss —epss 0.07
Windows Hyper-V Elevation of Privilege Vulnerability
- risk 0.12cvss —epss 0.02
Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability
- CVE-2026-21248Feb 10, 2026risk 0.03cvss —epss 0.01
Heap-based buffer overflow in Windows Hyper-V allows an authorized attacker to execute code locally.
- CVE-2024-43567Oct 8, 2024risk 0.01cvss —epss 0.02
Windows Hyper-V Denial of Service Vulnerability
- CVE-2024-38127Aug 13, 2024risk 0.01cvss —epss 0.02
Windows Hyper-V Elevation of Privilege Vulnerability
- CVE-2025-62567Dec 9, 2025risk 0.00cvss —epss 0.01
Integer underflow (wrap or wraparound) in Windows Hyper-V allows an authorized attacker to deny service over a network.
- CVE-2025-54115Sep 9, 2025risk 0.00cvss —epss 0.00
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Hyper-V allows an authorized attacker to elevate privileges locally.
- CVE-2025-54091Sep 9, 2025risk 0.00cvss —epss 0.00
Integer overflow or wraparound in Windows Hyper-V allows an authorized attacker to elevate privileges locally.
- CVE-2025-48807Aug 12, 2025risk 0.00cvss —epss 0.00
Improper restriction of communication channel to intended endpoints in Windows Hyper-V allows an authorized attacker to execute code locally.
- CVE-2025-53723Aug 12, 2025risk 0.00cvss —epss 0.00
Numeric truncation error in Windows Hyper-V allows an authorized attacker to elevate privileges locally.
- CVE-2025-27491Apr 8, 2025risk 0.00cvss —epss 0.01
Use after free in Windows Hyper-V allows an authorized attacker to execute code over a network.
- CVE-2024-30092Oct 8, 2024risk 0.00cvss —epss 0.01
Windows Hyper-V Remote Code Execution Vulnerability