Qemu

Qemu

422 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.2

CVE-2025-54566

  • EPSS 0.01%
  • Published 25.07.2025 03:15:33
  • Last modified 25.07.2025 15:29:19

hw/pci/pcie_sriov.c in QEMU through 10.0.3 has a migration state inconsistency, a related issue to CVE-2024-26327.

4.2

CVE-2025-54567

  • EPSS 0.01%
  • Published 25.07.2025 03:15:33
  • Last modified 25.07.2025 15:29:19

hw/pci/pcie_sriov.c in QEMU through 10.0.3 mishandles the VF Enable bit write mask, a related issue to CVE-2024-26327.

7.8

CVE-2024-7730

  • EPSS 0.12%
  • Published 14.11.2024 12:15:18
  • Last modified 05.08.2025 18:26:29

A heap buffer overflow was found in the virtio-snd device in QEMU. When reading input audio in the virtio-snd input callback, virtio_snd_pcm_in_cb, the function did not check whether the iov can fit the data buffer. This issue can trigger an out-of-b...

6

CVE-2024-3447

Exploit
  • EPSS 0.03%
  • Published 14.11.2024 12:15:17
  • Last modified 05.08.2025 18:33:57

A heap-based buffer overflow was found in the SDHCI device emulation of QEMU. The bug is triggered when both `s->data_count` and the size of `s->fifo_buffer` are set to 0x200, leading to an out-of-bound access. A malicious guest could use this flaw ...

8.2

CVE-2024-6519

  • EPSS 0.04%
  • Published 21.10.2024 15:15:03
  • Last modified 08.08.2025 16:13:16

A use-after-free vulnerability was found in the QEMU LSI53C895A SCSI Host Bus Adapter emulation. This issue can lead to a crash or VM escape.

3.8

CVE-2024-8612

  • EPSS 0.05%
  • Published 20.09.2024 18:15:04
  • Last modified 02.10.2025 17:16:02

A flaw was found in QEMU, in the virtio-scsi, virtio-blk, and virtio-crypto devices. The size for virtqueue_push as set in virtio_scsi_complete_req / virtio_blk_req_complete / virito_crypto_req_complete could be larger than the true size of the data ...

5.5

CVE-2024-8354

  • EPSS 0.01%
  • Published 19.09.2024 11:15:10
  • Last modified 21.11.2024 09:53:05

A flaw was found in QEMU. An assertion failure was present in the usb_ep_get() function in hw/net/core.c when trying to get the USB endpoint from a USB device. This flaw may allow a malicious unprivileged guest user to crash the QEMU process on the h...

7.5

CVE-2024-7409

  • EPSS 1.71%
  • Published 05.08.2024 14:15:35
  • Last modified 02.05.2025 23:15:15

A flaw was found in the QEMU NBD Server. This vulnerability allows a denial of service (DoS) attack via improper synchronization during socket closure when a client keeps a socket open as the server is taken offline.

6.8

CVE-2024-6505

  • EPSS 0.09%
  • Published 05.07.2024 14:15:03
  • Last modified 21.11.2024 09:49:46

A flaw was found in the virtio-net device in QEMU. When enabling the RSS feature on the virtio-net network card, the indirections_table data within RSS becomes controllable. Setting excessively large values may cause an index out-of-bounds issue, pot...

5.5

CVE-2024-4693

  • EPSS 0.03%
  • Published 14.05.2024 15:44:26
  • Last modified 21.11.2024 09:43:23

A flaw was found in the QEMU Virtio PCI Bindings (hw/virtio/virtio-pci.c). An improper release and use of the irqfd for vector 0 during the boot process leads to a guest triggerable crash via vhost_net_stop(). This flaw allows a malicious guest to cr...