Lucene search

K
redosRedosROS-20240329-15
HistoryMar 29, 2024 - 12:00 a.m.

ROS-20240329-15

2024-03-2900:00:00
redos.red-soft.ru
12
qemu
hardware emulator
denial of service
vulnerability
buffer overflow
remote attack
unix

CVSS3

6.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

AI Score

7.3

Confidence

High

EPSS

0.002

Percentile

54.6%

A vulnerability in the lsi53c895a.c component of the QEMU hardware emulator is related to writing outside the boundaries of the
buffer. Exploitation of the vulnerability could allow an attacker to cause a denial of service

A vulnerability in the scsi_disk_reset() function (hw/scsi/scsi-disk.c) of the QEMU hardware emulator
is related to division by zero as a result of incorrect block size checking. Exploitation of the vulnerability
could allow an attacker acting remotely to cause a denial of service

A vulnerability in the qxl_phys2virt() function of the QEMU hardware emulator is associated with a read error outside the
QXL mapping boundaries in QEMU. Exploitation of the vulnerability could allow an attacker,
acting remotely, to cause a denial of service

A vulnerability in the virtio_crypto_handle_sym_req function of the QEMU hardware emulator is associated with a write
outside of buffer boundaries. Exploitation of the vulnerability could allow an attacker to cause a denial of service

Vulnerability in the ClientCutText component of the QEMU hardware emulator is related to overflow during
message processing. Exploitation of the vulnerability could allow an attacker acting remotely to cause a
denial of service

OSVersionArchitecturePackageVersionFilename
redos7.3x86_64qemu< 7.2.7-1UNKNOWN

CVSS3

6.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

AI Score

7.3

Confidence

High

EPSS

0.002

Percentile

54.6%