Lucene search
K

125 matches found

SUSE CVE
SUSE CVE
added 2026/02/07 12:24 a.m.4 views

SUSE CVE-2026-24843

melange allows users to build apk packages using declarative pipelines. In version 0.11.3 to before 0.40.3, an attacker who can influence the tar stream from a QEMU guest VM could write files outside the intended workspace directory on the host. The retrieveWorkspace function extracts tar entries...

8.4CVSS5.3AI score0.00167EPSS
Exploits0References3
NVD
NVD
added 2026/02/04 8:16 p.m.7 views

CVE-2026-24843

melange allows users to build apk packages using declarative pipelines. In version 0.11.3 to before 0.40.3, an attacker who can influence the tar stream from a QEMU guest VM could write files outside the intended workspace directory on the host. The retrieveWorkspace function extracts tar entries...

8.4CVSS0.00167EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

MiracleLinux 4 : libvirt-0.10.2-64.0.1.AXS4 (AXSA:2018-3226:03)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2018-3226:03 advisory. libvirt: Resource exhaustion via qemuMonitorIORead method CVE-2018-5748 libvirt: Incomplete fix for CVE-2018-5748 triggered by QEMU guest agent...

7.5CVSS7AI score0.03236EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-11717

Malware in sbrugna...

7.5CVSS7.6AI score0.02955EPSS
Exploits0References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2013-2183

Malware in sbrugna...

7.2CVSS8.3AI score0.00448EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-7615

Malware in sbrugna...

5.5CVSS6.5AI score0.005EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-8019

Malware in sbrugna...

10CVSS6.8AI score0.03025EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-3132

Malware in sbrugna...

6.5CVSS7.3AI score0.00861EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2013-1998

Malware in sbrugna...

6.9CVSS8.5AI score0.00375EPSS
Exploits0References16
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-12697

Malicious code in bioql PyPI...

7.8CVSS6.8AI score0.00308EPSS
Exploits0References11
Microsoft CVE
Microsoft CVE
added 2025/09/04 3:8 a.m.4 views

A flaw was found in the QEMU Guest Agent service for Windows. A local unprivileged user may be able to manipulate the QEMU Guest Agent's Windows installer via repair custom actions to elevate their privileges on the system.

...

7.8CVSS7AI score0.00308EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2023-0664

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the QEMU Guest Agent service for Windows. A local unprivileged user may be able to manipulate the QEMU Guest Agent's Windows installer via...

7.8CVSS6.6AI score0.00308EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2018-12617

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - qmpguestfileread in qga/commands-posix.c and qga/commands-win32.c in qemu-ga aka QEMU Guest Agent in QEMU 2.12.50 has an integer overflow causing a gmalloc0 cal...

7.5CVSS6.5AI score0.25348EPSS
Exploits5References2
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2013-2007

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The qemu guest agent in Qemu 1.4.1 and earlier, as used by Xen, when started in daemon mode, uses weak permissions for certain files, which allows local users t...

6.9CVSS7.7AI score0.00375EPSS
Exploits0References2
Rockylinux
Rockylinux
added 2024/08/21 2:53 p.m.17 views

virt-v2v bug fix update

An update is available for virt-v2v. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The virt-v2v package provides a tool for converting virtual machines to use...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.31 views

EulerOS 2.0 SP9 : qemu (EulerOS-SA-2023-2906)

According to the versions of the qemu package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device. This flaw allows a crafted guest driver to execute HW commands whe...

8.8CVSS6.9AI score0.01606EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2023/10/09 12:0 a.m.28 views

Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2023-2906)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.4AI score0.01606EPSS
Exploits0References2
OSV
OSV
added 2023/08/06 11:5 a.m.1 views

OESA-2023-1475 qemu security update

QEMU is a FAST! processor emulator using dynamic translation to achieve good emulation speed. Security Fixes: A flaw was found in the QEMU Guest Agent service for Windows. A local unprivileged user may be able to manipulate the QEMU Guest Agent's Windows installer via repair custom actions to...

7.8CVSS6.3AI score0.00376EPSS
Exploits0References3
OSV
OSV
added 2023/08/06 11:5 a.m.4 views

OESA-2023-1473 qemu security update

QEMU is a FAST! processor emulator using dynamic translation to achieve good emulation speed. Security Fixes: A flaw was found in the QEMU Guest Agent service for Windows. A local unprivileged user may be able to manipulate the QEMU Guest Agent's Windows installer via repair custom actions to...

7.8CVSS6.3AI score0.00376EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/06/02 12:0 a.m.69 views

Oracle Linux 7 : qemu (ELSA-2023-12368)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-12368 advisory. - qga/win32: Use rundll for VSS installation Konstantin Kostiuk Orabug: 35206108 CVE-2023-0664 - qga/win32: Remove change action from MSI installer...

7.8CVSS7AI score0.00308EPSS
Exploits0References3
Rows per page
Query Builder