Lucene search

K

PRIOn knowledge basePRION:CVE-2013-4151

HistoryNov 04, 2014 - 9:55 p.m.

Out-of-bounds

2014-11-0421:55:00

PRIOn knowledge base

www.prio-n.com

4

7.7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.041 Low

EPSS

Percentile

91.9%

The virtio_load function in virtio/virtio.c in QEMU 1.x before 1.7.2 allows remote attackers to execute arbitrary code via a crafted savevm image, which triggers an out-of-bounds write.

CPENameOperatorVersion
qemueq1.0 rc1
qemueq1.1 rc3
qemueq1.6.0
qemueq1.5.0 rc1
qemueq1.0 rc2
qemueq1.5.3
qemueq1.5.0
qemueq1.6.0 rc3
qemueq1.5.1
qemueq1.1 rc4

Rows per page:

1-10 of 271

References

git.qemu.org/?p=qemu.git%3Ba=commitdiff%3Bh=cc45995294b92d95319b4782750a3580cabdbc0c

lists.nongnu.org/archive/html/qemu-stable/2014-07/msg00187.html

rhn.redhat.com/errata/RHSA-2014-0743.html

rhn.redhat.com/errata/RHSA-2014-0744.html

lists.fedoraproject.org/pipermail/package-announce/2014-May/133345.html

7.7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.041 Low

EPSS

Percentile

91.9%

Related for PRION:CVE-2013-4151

cvelist1 debiancve1 cve1 ubuntucve1 veracode8 nessus14 openvas9 redhat6 oraclelinux3 centos2 fedora1 ubuntu1 mageia1