Lucene search

CVE-2024-6505

🗓️ 05 Jul 2024 14:03:15Reported by redhatType

Flaw in Qemu-kvm's virtio-net device allows guest to crash host's QEMU proces

Reporter	Title	Published	Views	Family All 12
RedhatCVE	CVE-2024-6505	4 Jul 202411:06	–	redhatcve
Cvelist	CVE-2024-6505 Qemu-kvm: virtio-net: queue index out-of-bounds access in software rss	5 Jul 202413:51	–	cvelist
Debian CVE	CVE-2024-6505	5 Jul 202414:15	–	debiancve
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2024-6505	6 Mar 202500:00	–	nessus
NVD	CVE-2024-6505	5 Jul 202414:15	–	nvd
Vulnrichment	CVE-2024-6505 Qemu-kvm: virtio-net: queue index out-of-bounds access in software rss	5 Jul 202413:51	–	vulnrichment
OSV	CVE-2024-6505	5 Jul 202414:15	–	osv
OSV	UBUNTU-CVE-2024-6505	5 Jul 202414:15	–	osv
UbuntuCve	CVE-2024-6505	5 Jul 202400:00	–	ubuntucve
Redos	ROS-20241008-04	8 Oct 202400:00	–	redos

Nvd

Node

qemu qemuMatch-

Node

redhat enterprise_linuxMatch8.0-

redhat enterprise_linuxMatch8.0advanced_virtualization

redhat enterprise_linuxMatch9.0

[
  {
    "versions": [
      {
        "status": "affected",
        "version": "5.1.0",
        "lessThan": "9.1.0",
        "versionType": "semver"
      }
    ],
    "packageName": "qemu",
    "collectionURL": "https://gitlab.com/qemu-project/qemu",
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 6",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "qemu-kvm",
    "defaultStatus": "unknown",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:6"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 7",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "qemu-kvm",
    "defaultStatus": "unknown",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:7"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 7",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "qemu-kvm-ma",
    "defaultStatus": "unknown",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:7"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "virt:rhel/qemu-kvm",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:8"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8 Advanced Virtualization",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "virt:av/qemu-kvm",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/a:redhat:advanced_virtualization:8::el8"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 9",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "qemu-kvm",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:9"
    ]
  }
]

Source	Link
access	www.access.redhat.com/security/cve/CVE-2024-6505
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
security	www.security.netapp.com/advisory/ntap-20240816-0006/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

05 Jul 2024 14:15Current

6.3Medium risk

Vulners AI Score6.3

CVSS36.8

EPSS0.00166

SSVC

CWE-125