Lucene search
China National Vulnerability DatabaseCNVD-2022-84158HistoryAug 31, 2022 - 12:00 a.m.
QEMU Denial of Service Vulnerability (CNVD-2022-84158)
2022-08-3100:00:00
China National Vulnerability Database
www.cnvd.org.cn
19
qemu
denial of service
ahci controller
deadlock
software reset
fis messages
client
attacker
exploit
EPSS
0
Percentile
12.6%
QEMU (Quick Emulator) is a set of emulated processor software from Fabrice Bellard, a French personal developer. QEMU has a denial of service vulnerability, which stems from a deadlock problem in its AHCI controller during a software reset (ahci_reset_port) while processing host-to-device registration FIS (Frame Information Structure) messages from a client, allowing a privileged user in the client to hang the QEMU process on the host, which could be exploited by an attacker to cause a denial of service. exploit this vulnerability to cause a denial of service.
Related
debiancve
debiancve
CVE-2021-3735
2022-08-26 16:15:09
ubuntucve
ubuntucve
CVE-2021-3735
2022-08-26 00:00:00
cve
cve
CVE-2021-3735
2022-08-26 16:15:09
osv
osv
CVE-2021-3735
2022-08-26 16:15:09
nvd
nvd
CVE-2021-3735
2022-08-26 16:15:09
prion
prion
Design/Logic Flaw
2022-08-26 16:15:00
cvelist
cvelist
CVE-2021-3735
2022-08-26 15:25:40
redhatcve
redhatcve
CVE-2021-3735
2021-08-25 06:32:45
nessus
nessus
RHEL 8 : qemu (Unpatched Vulnerability)
2024-05-11 00:00:00
RHEL 8 : qemu-kvm (Unpatched Vulnerability)
2024-07-12 00:00:00
RHEL 6 : qemu (Unpatched Vulnerability)
2024-05-11 00:00:00