Lucene search
+L

177 matches found

redhat
redhat
added 2021/02/22 3:43 p.m.4 views

QEMU: assertion failure through usb_packet_unmap() in hw/usb/hcd-ehci.c

A reachable assertion vulnerability was found in the USB EHCI emulation code of QEMU. This issue occurs while processing USB requests due to missed handling of DMA memory map failure. This flaw allows a malicious privileged user within the guest to send bogus USB requests and crash the QEMU proce...

3.2CVSS6.9AI score0.00357EPSS
Exploits0References4
nessus
nessus
added 2021/02/05 12:0 a.m.84 views

EulerOS 2.0 SP9 : qemu (EulerOS-SA-2021-1256)

According to the versions of the qemu package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In QEMU through 5.0.0, an integer overflow was found in the SM501 display driver implementation. This flaw occurs in the COPYAREA macro while...

5.5CVSS6.7AI score0.00654EPSS
Exploits2References6
nessus
nessus
added 2021/02/05 12:0 a.m.253 views

EulerOS 2.0 SP9 : qemu (EulerOS-SA-2021-1275)

According to the versions of the qemu package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In QEMU through 5.0.0, an integer overflow was found in the SM501 display driver implementation. This flaw occurs in the COPYAREA macro while...

5.5CVSS6.7AI score0.00654EPSS
Exploits2References6
openvas
openvas
added 2021/01/08 12:0 a.m.33 views

Huawei EulerOS: Security Advisory for qemu-kvm (EulerOS-SA-2021-1046)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.2AI score0.04093EPSS
Exploits0References2
mscve
mscve
added 2020/12/08 12:0 a.m.5 views

A reachable assertion issue was found in the USB EHCI emulation code of QEMU. It could occur while processing USB requests due to missing handling of DMA memory map failure. A malicious privileged user within the guest may abuse this flaw to send bogus USB requests and crash the QEMU process on the host resulting in a denial of service.

...

3.2CVSS7AI score0.00357EPSS
Exploits0
veracode
veracode
added 2020/12/06 2:21 a.m.43 views

Denial Of Service (DoS)

qemu is vulnerable to denial of service DoS. The vulnerability exists through a reachable assertion issue was found in the USB EHCI emulation code of QEMU, allows an privileged user to send bogus USB requests and crash the QEMU process on the host...

3.2CVSS2.6AI score0.00357EPSS
Exploits0References5Affected Software7
cvelist
cvelist
added 2020/12/02 12:52 a.m.28 views

CVE-2020-25723

A reachable assertion issue was found in the USB EHCI emulation code of QEMU. It could occur while processing USB requests due to missing handling of DMA memory map failure. A malicious privileged user within the guest may abuse this flaw to send bogus USB requests and crash the QEMU process on t...

5.6AI score0.00357EPSS
Exploits0References4
debiancve
debiancve
added 2020/12/02 12:52 a.m.44 views

CVE-2020-25723

A reachable assertion issue was found in the USB EHCI emulation code of QEMU. It could occur while processing USB requests due to missing handling of DMA memory map failure. A malicious privileged user within the guest may abuse this flaw to send bogus USB requests and crash the QEMU process on t...

3.2CVSS6.4AI score0.00357EPSS
Exploits0
cve
cve
added 2020/12/02 12:52 a.m.377 views

CVE-2020-25723

CVE-2020-25723 affects QEMU’s USB EHCI emulation. A reachable assertion issue may occur while processing USB requests due to missing handling of DMA memory map failure. A privileged user inside the guest could send bogus USB requests and crash the QEMU process on the host, resulting in a denial o...

3.2CVSS5.5AI score0.00357EPSS
Exploits0References4Affected Software1
alpinelinux
alpinelinux
added 2020/12/02 12:52 a.m.58 views

CVE-2020-25723

A reachable assertion issue was found in the USB EHCI emulation code of QEMU. It could occur while processing USB requests due to missing handling of DMA memory map failure. A malicious privileged user within the guest may abuse this flaw to send bogus USB requests and crash the QEMU process on t...

3.2CVSS5.9AI score0.00357EPSS
Exploits0
ubuntucve
ubuntucve
added 2020/11/18 8:28 a.m.49 views

CVE-2020-25723

A reachable assertion issue was found in the USB EHCI emulation code of QEMU. It could occur while processing USB requests due to missing handling of DMA memory map failure. A malicious privileged user within the guest may abuse this flaw to send bogus USB requests and crash the QEMU process on t...

3.2CVSS6.8AI score0.00357EPSS
Exploits0References4
redhatcve
redhatcve
added 2020/11/18 8:9 a.m.52 views

CVE-2020-25723

A reachable assertion vulnerability was found in the USB EHCI emulation code of QEMU. This issue occurs while processing USB requests due to missed handling of DMA memory map failure. This flaw allows a malicious privileged user within the guest to send bogus USB requests and crash the QEMU proce...

2.1CVSS1.5AI score0.00357EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2020/08/26 12:0 a.m.3 views

PT-2022-7369 · Qemu +11 · Qemu +11

Name of the Vulnerable Software and Affected Versions: QEMU versions prior to 7.0.0 Description: A DMA reentrancy issue was found in the USB EHCI controller emulation of QEMU. EHCI does not verify if the Buffer Pointer overlaps with its MMIO region when it transfers the USB packets. Crafted conte...

8.8CVSS7.1AI score0.02904EPSS
Exploits13References252
zdt
zdt
added 2020/07/19 12:0 a.m.661 views

VMware ESXi Use-After-Free / Out-Of-Bounds Access Vulnerability

Several security issues have been identified in the VMware ESIx virtual machine monitor VMM. A use-after-free UAF vulnerability in PVNVRAM, a missing return value check in EHCI USB controller leading to private heap information disclosure, and several out-of-bounds reads. Overview ======= We...

8.4CVSS0.1AI score0.00587EPSS
Exploits4
zdi
zdi
added 2020/06/30 12:0 a.m.34 views

VMware Workstation EHCI Time-Of-Check Time-Of-Use Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of VMware Workstation. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the EHCI...

7.5CVSS3.3AI score0.00362EPSS
Exploits0References1
zdi
zdi
added 2020/06/30 12:0 a.m.23 views

VMware Workstation EHCI Heap-based Buffer Overflow Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of VMware Workstation. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the EHCI...

7.5CVSS5.1AI score0.00473EPSS
Exploits0References1
cnvd
cnvd
added 2020/06/28 12:0 a.m.7 views

Information Disclosure Vulnerability in Multiple VMware Products (CNVD-2021-24358)

VMware ESXi is a server virtualization platform that can be installed directly on physical servers, VMware Workstation is a set of virtual machine software, and VMware Fusion is a set of virtual machine software designed to run Windows applications on Macs. VMware Fusion is a suite of virtual...

4.7CVSS5.7AI score0.00471EPSS
Exploits2References1
nvd
nvd
added 2020/06/25 3:15 p.m.21 views

CVE-2020-3964

VMware ESXi 7.0 before ESXi7.0.0-1.20.16321839, 6.7 before ESXi670-202006401-SG and 6.5 before ESXi650-202005401-SG, Workstation 15.x before 15.5.2, and Fusion 11.x before 11.5.2 contain an information leak in the EHCI USB controller. A malicious actor with local access to a virtual machine may b...

4.7CVSS0.00471EPSS
Exploits2References3
osv
osv
added 2020/06/25 3:15 p.m.4 views

CVE-2020-3964

VMware ESXi 7.0 before ESXi7.0.0-1.20.16321839, 6.7 before ESXi670-202006401-SG and 6.5 before ESXi650-202005401-SG, Workstation 15.x before 15.5.2, and Fusion 11.x before 11.5.2 contain an information leak in the EHCI USB controller. A malicious actor with local access to a virtual machine may b...

4.7CVSS5.8AI score0.00471EPSS
Exploits2References3
osv
osv
added 2020/06/25 3:15 p.m.5 views

CVE-2020-3966

VMware ESXi 7.0 before ESXi7.0.0-1.20.16321839, 6.7 before ESXi670-202004101-SG and 6.5 before ESXi650-202005401-SG, Workstation 15.x before 15.5.2, and Fusion 11.x before 11.5.2 contain a heap-overflow due to a race condition issue in the USB 2.0 controller EHCI. A malicious actor with local...

7.5CVSS7.2AI score0.00362EPSS
Exploits0References2
Rows per page
Query Builder