NEMU 安全漏洞

NEMU is an open-source teaching system simulator developed by XiangShan. NEMU has a security vulnerability, which stems from insufficient Smstateen permissions. This vulnerability may allow low-privilege code access to IMSIC state, potentially leading to cross-context information leaks or...

hw/pci/pcie_sriov.c in QEMU through 10.0.3 mishandles the VF Enable bit write mask, a related issue to CVE-2024-26327.

...

QEMU Emulator Exploited as Tunneling Tool to Breach Company Network

Threat actors have been observed leveraging the QEMU open-source hardware emulator as tunneling software during a cyber attack targeting an unnamed "large company" to connect to their infrastructure. While a number of legitimate tunneling tools like Chisel, FRP, ligolo, ngrok, and Plink have been...

Qemu 'hw/display/cirrus_vga.c' Remote Code Execution Vulnerability Vulnerability

QEMU is an open source emulator software. Qemu 'hw/display/cirrusvga.c' suffers from a remote code execution vulnerability vulnerability that allows an attacker to exploit the vulnerability by submitting a special request that can execute arbitrary code...

QEMU 'pit_ioport_read()' function memory corruption vulnerability

QEMU is an open source emulator software. QEMU has a memory corruption vulnerability in the pitioportread function, which allows an attacker to exploit this vulnerability to execute arbitrary code on the host...

[SECURITY] Fedora 20 Update: qemu-1.6.2-4.fc20

QEMU is a generic and open source processor emulator which achieves a good emulation speed by using dynamic translation. QEMU has two operating modes: Full system emulation. In this mode, QEMU emulates a full system for example a PC, including a processor and various peripherials. It can be used ...