Lucene search

K
redosRedosROS-20220125-17
HistoryJan 25, 2022 - 12:00 a.m.

ROS-20220125-17

2022-01-2500:00:00
redos.red-soft.ru
25

7.5 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

12.6%

A vulnerability in the QEMU hardware emulator is related to a single offset error when emulating a
SCSI device in QEMU. Exploitation of the vulnerability could allow an attacker acting remotely,
cause QEMU to crash

The QEMU hardware emulator vulnerability is related to a memory usage error after a
release when working with a virtual network device. Exploitation of the vulnerability could allow
an attacker acting remotely to compromise a vulnerable system

OSVersionArchitecturePackageVersionFilename
redos7.3x86_64qemu<= 6.1.0-7UNKNOWN

7.5 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

12.6%

Related for ROS-20220125-17