Qemu

Qemu

422 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.2

CVE-2014-2894

  • EPSS 0.06%
  • Published 23.04.2014 15:55:05
  • Last modified 12.04.2025 10:46:40

Off-by-one error in the cmd_smart function in the smart self test in hw/ide/core.c in QEMU before 2.0 allows local users to have unspecified impact via a SMART EXECUTE OFFLINE command that triggers a buffer underflow and memory corruption.

4.9

CVE-2014-0150

  • EPSS 0.3%
  • Published 18.04.2014 14:55:25
  • Last modified 12.04.2025 10:46:40

Integer overflow in the virtio_net_handle_mac function in hw/net/virtio-net.c in QEMU 2.0 and earlier allows local guest users to execute arbitrary code via a MAC addresses table update request, which triggers a heap-based buffer overflow.

4

CVE-2011-3346

Exploit
  • EPSS 0.12%
  • Published 01.04.2014 06:35:52
  • Last modified 12.04.2025 10:46:40

Buffer overflow in hw/scsi-disk.c in the SCSI subsystem in QEMU before 0.15.2, as used by Xen, might allow local guest users with permission to access the CD-ROM to cause a denial of service (guest crash) via a crafted SAI READ CAPACITY SCSI command....

6.8

CVE-2011-4111

  • EPSS 0.8%
  • Published 26.02.2014 15:55:08
  • Last modified 12.04.2025 10:46:40

Buffer overflow in the ccid_card_vscard_handle_message function in hw/ccid-card-passthru.c in QEMU before 0.15.2 and 1.x before 1.0-rc4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted VSC...

2.7

CVE-2013-4375

  • EPSS 0.09%
  • Published 19.01.2014 18:55:02
  • Last modified 11.04.2025 00:51:21

The qdisk PV disk backend in qemu-xen in Xen 4.2.x and 4.3.x before 4.3.1, and qemu 1.1 and other versions, allows local HVM guests to cause a denial of service (domain grant reference consumption) via unspecified vectors.

2.3

CVE-2013-4377

  • EPSS 0.1%
  • Published 11.10.2013 22:55:40
  • Last modified 11.04.2025 00:51:21

Use-after-free vulnerability in the virtio-pci implementation in Qemu 1.4.0 through 1.6.0 allows local users to cause a denial of service (daemon crash) by "hot-unplugging" a virtio device.

7.2

CVE-2013-4344

  • EPSS 0.07%
  • Published 04.10.2013 17:55:09
  • Last modified 11.04.2025 00:51:21

Buffer overflow in the SCSI implementation in QEMU, as used in Xen, when a SCSI controller has more than 256 attached devices, allows local users to gain privileges via a small transfer buffer in a REPORT LUNS command.

6.9

CVE-2013-2007

  • EPSS 0.03%
  • Published 21.05.2013 18:55:02
  • Last modified 11.04.2025 00:51:21

The qemu guest agent in Qemu 1.4.1 and earlier, as used by Xen, when started in daemon mode, uses weak permissions for certain files, which allows local users to read and write to these files.

9.3

CVE-2012-6075

  • EPSS 5.97%
  • Published 13.02.2013 01:55:03
  • Last modified 11.04.2025 00:51:21

Buffer overflow in the e1000_receive function in the e1000 device driver (hw/e1000.c) in QEMU 1.3.0-rc2 and other versions, when the SBP and LPE flags are disabled, allows remote attackers to cause a denial of service (guest OS crash) and possibly ex...

7.2

CVE-2012-3515

  • EPSS 0.05%
  • Published 23.11.2012 20:55:03
  • Last modified 11.04.2025 00:51:21

Qemu, as used in Xen 4.0, 4.1 and possibly other products, when emulating certain devices with a virtual console backend, allows local OS guest users to gain privileges via a crafted escape VT100 sequence that triggers the overwrite of a "device mode...