Lucene search
K

14 matches found

OpenVAS
OpenVAS
added 2023/03/28 12:0 a.m.27 views

SUSE: Security Advisory (SUSE-SU-2023:0761-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.8AI score0.00834EPSS
Exploits8References16
OpenVAS
OpenVAS
added 2023/03/15 12:0 a.m.30 views

Debian: Security Advisory (DLA-3362-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.5AI score0.0183EPSS
Exploits3References4
OpenVAS
OpenVAS
added 2022/10/17 12:0 a.m.39 views

SUSE: Security Advisory (SUSE-SU-2022:3594-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.2AI score0.00834EPSS
Exploits5References9
OpenVAS
OpenVAS
added 2021/07/13 12:0 a.m.30 views

openSUSE: Security Advisory for qemu (openSUSE-SU-2021:1942-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS6.7AI score0.05447EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2021/06/11 12:0 a.m.42 views

SUSE: Security Advisory (SUSE-SU-2021:1942-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.9AI score0.05447EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2021/04/13 12:0 a.m.30 views

Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2021-1735)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.7CVSS6.3AI score0.05447EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2021/04/13 12:0 a.m.30 views

Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2021-1763)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.7CVSS6.3AI score0.05447EPSS
Exploits2References2
Prion
Prion
added 2021/03/23 9:15 p.m.33 views

Out-of-bounds

The patch for CVE-2020-17380/CVE-2020-25085 was found to be ineffective, thus making QEMU vulnerable to the out-of-bounds read/write access issues previously found in the SDHCI controller emulation code. This flaw allows a malicious privileged guest to crash the QEMU process on the host, resultin...

4.6CVSS5.7AI score0.00638EPSS
Exploits1References5Affected Software4
CBLMariner
CBLMariner
added 2021/03/03 3:44 a.m.30 views

CVE-2020-17380 affecting package qemu-kvm 4.2.0-48

CVE-2020-17380 affecting package qemu-kvm 4.2.0-48. A patched version of the package is available...

6.3CVSS7.5AI score0.00424EPSS
Exploits0
Circl
Circl
added 2021/01/30 1:25 p.m.9 views

CVE-2020-17380

creationtimestamp| type| source ---|---|--- 2021-01-30 13:25:11+00:00| seen| https://t.me/cibsecurity/22874 2021-03-23 23:38:32+00:00| seen| https://t.me/cibsecurity/25344 2023-11-29 05:12:44+00:00| seen| https://t.me/arpsyndicate/669...

6.3CVSS6.6AI score0.00424EPSS
Exploits0References3
Cvelist
Cvelist
added 2021/01/30 5:38 a.m.44 views

CVE-2020-17380

A heap-based buffer overflow was found in QEMU through 5.0.0 in the SDHCI device emulation support. It could occur while doing a multi block SDMA transfer via the sdhcisdmatransfermultiblocks routine in hw/sd/sdhci.c. A guest user or process could use this flaw to crash the QEMU process on the...

6.8AI score0.00424EPSS
Exploits0References5
CVE
CVE
added 2021/01/30 5:38 a.m.306 views

CVE-2020-17380

CVE-2020-17380 (QEMU SDHCI) affects QEMU up to 5.0.0 in the SDHCI device emulation (hw/sd/sdhci.c). The flaw is a heap-based buffer overflow that can occur during a multi-block SDMA transfer in sdhci_sdma_transfer_multi_blocks(). A guest user or process could crash the QEMU host process or, poten...

6.3CVSS6.7AI score0.00424EPSS
Exploits0References5Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/12/01 12:0 a.m.55 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : QEMU vulnerabilities (USN-4650-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4650-1 advisory. Alexander Bulekov discovered that QEMU incorrectly handled SDHCI device emulation. An attacker inside the guest could use this...

6.5CVSS7AI score0.02515EPSS
Exploits2References9
RedhatCVE
RedhatCVE
added 2020/08/11 6:13 p.m.34 views

CVE-2020-17380

A flaw was found in QEMU. A heap-based buffer overflow vulnerability was found in the SDHCI device emulation support allowing a guest user or process to crash the QEMU process on the host resulting in a denial of service condition, or potentially execute arbitrary code with privileges of the QEMU...

4.6CVSS4.2AI score0.00424EPSS
Exploits0References3
Rows per page
Query Builder