Lucene search

K

PRIOn knowledge basePRION:CVE-2013-4541

HistoryNov 04, 2014 - 9:55 p.m.

Design/Logic Flaw

2014-11-0421:55:00

PRIOn knowledge base

www.prio-n.com

7

7.8 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.07 Low

EPSS

Percentile

93.8%

The usb_device_post_load function in hw/usb/bus.c in QEMU before 1.7.2 might allow remote attackers to execute arbitrary code via a crafted savevm image, related to a negative setup_len or setup_index value.

CPENameOperatorVersion
qemueq1.0 rc1
qemueq0.12.2
qemueq0.12.0 rc2
qemule1.7.1
qemueq1.1 rc3
qemueq1.6.0
qemueq0.1.6
qemueq1.5.0 rc1
qemueq0.13.0 rc0
qemueq0.5.3

Rows per page:

1-10 of 921

References

git.qemu.org/?p=qemu.git%3Ba=commitdiff%3Bh=9f8e9895c504149d7048e9fc5eb5cbb34b16e49a

lists.nongnu.org/archive/html/qemu-stable/2014-07/msg00187.html

rhn.redhat.com/errata/RHSA-2014-0743.html

rhn.redhat.com/errata/RHSA-2014-0744.html

lists.fedoraproject.org/pipermail/package-announce/2014-May/133345.html

7.8 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.07 Low

EPSS

Percentile

93.8%

Related for PRION:CVE-2013-4541

cvelist1 debiancve1 ubuntucve1 cve1 securityvulns2 openvas11 nessus15 suse1 redhat6 veracode8 oraclelinux3 centos2 fedora1 ubuntu1 mageia1