8.4 High
AI Score
Confidence
High
7.2 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
24.9%
Asias He discovered that QEMU incorrectly handled SCSI controllers with
more than 256 attached devices. A local user could possibly use this flaw
to elevate privileges. (CVE-2013-4344)
It was discovered that QEMU incorrectly handled Xen disks. A local guest
could possibly use this flaw to consume resources, resulting in a denial of
service. This issue only affected Ubuntu 12.10 and Ubuntu 13.10.
(CVE-2013-4375)
Sibiao Luo discovered that QEMU incorrectly handled device hot-unplugging.
A local user could possibly use this flaw to cause a denial of service.
This issue only affected Ubuntu 13.10. (CVE-2013-4377)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 13.10 | noarch | qemu-system-misc | < 1.5.0+dfsg-3ubuntu5.3 | UNKNOWN |
Ubuntu | 13.10 | noarch | qemu | < 1.5.0+dfsg-3ubuntu5.3 | UNKNOWN |
Ubuntu | 13.10 | noarch | qemu-guest-agent | < 1.5.0+dfsg-3ubuntu5.3 | UNKNOWN |
Ubuntu | 13.10 | noarch | qemu-kvm | < 1.5.0+dfsg-3ubuntu5.3 | UNKNOWN |
Ubuntu | 13.10 | noarch | qemu-system | < 1.5.0+dfsg-3ubuntu5.3 | UNKNOWN |
Ubuntu | 13.10 | noarch | qemu-system-arm | < 1.5.0+dfsg-3ubuntu5.3 | UNKNOWN |
Ubuntu | 13.10 | noarch | qemu-system-common | < 1.5.0+dfsg-3ubuntu5.3 | UNKNOWN |
Ubuntu | 13.10 | noarch | qemu-system-mips | < 1.5.0+dfsg-3ubuntu5.3 | UNKNOWN |
Ubuntu | 13.10 | noarch | qemu-system-ppc | < 1.5.0+dfsg-3ubuntu5.3 | UNKNOWN |
Ubuntu | 13.10 | noarch | qemu-system-sparc | < 1.5.0+dfsg-3ubuntu5.3 | UNKNOWN |