Lucene search
K

8 matches found

nessus
nessus
added 2025/03/06 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2022-36648

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The hardware emulation in the ofdpacmdaddl2flood of rocker device model in QEMU, as used in 7.0.0 and earlier, allows remote attackers to crash the host qemu an...

10CVSS6.9AI score0.01401EPSS
Exploits0References2
nessus
nessus
added 2025/02/10 12:0 a.m.12 views

Azure Linux 3.0 Security Update: qemu (CVE-2022-36648)

The version of qemu installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-36648 advisory. - The hardware emulation in the ofdpacmdaddl2flood of rocker device model in QEMU, as used in 7.0.0 and earlier,...

10CVSS7AI score0.01401EPSS
Exploits0References2
nessus
nessus
added 2024/08/06 12:0 a.m.31 views

CBL Mariner 2.0 Security Update: qemu (CVE-2022-36648)

The version of qemu installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-36648 advisory. - The hardware emulation in the ofdpacmdaddl2flood of rocker device model in QEMU, as used in 7.0.0 and earlier,...

10CVSS7AI score0.01401EPSS
Exploits0References2
redhatcve
redhatcve
added 2024/01/03 11:1 a.m.39 views

CVE-2022-36648

A NULL pointer dereference bug was found in the rocker device emulated ethernet switch of QEMU. The rockertlvparsenested function could return early because of no group ids in the grouptlvs array. In such case, the tlvs pointer is NULL and tlvsi + 1 in the next for-loop iteration ends up...

7.2AI score0.01401EPSS
Exploits0References5
osv
osv
added 2023/08/22 7:16 p.m.9 views

AZL-28069 CVE-2022-36648 affecting package qemu for versions less than 6.2.0-17

The hardware emulation in the ofdpacmdaddl2flood of rocker device model in QEMU, as used in 7.0.0 and earlier, allows remote attackers to crash the host qemu and potentially execute code on the host via execute a malformed program in the guest OS. Note: This has been disputed by multiple third...

10CVSS7.5AI score0.01401EPSS
Exploits0References1
nvd
nvd
added 2023/08/22 7:16 p.m.43 views

CVE-2022-36648

The hardware emulation in the ofdpacmdaddl2flood of rocker device model in QEMU, as used in 7.0.0 and earlier, allows remote attackers to crash the host qemu and potentially execute code on the host via execute a malformed program in the guest OS. Note: This has been disputed by multiple third...

10CVSS9.6AI score0.01401EPSS
Exploits0References2
ubuntucve
ubuntucve
added 2023/08/22 7:16 p.m.76 views

CVE-2022-36648

The hardware emulation in the ofdpacmdaddl2flood of rocker device model in QEMU, as used in 7.0.0 and earlier, allows remote attackers to crash the host qemu and potentially execute code on the host via execute a malformed program in the guest OS. Note: This has been disputed by multiple third...

10CVSS6.9AI score0.01401EPSS
Exploits0References2
cve
cve
added 2023/08/22 12:0 a.m.134 views

CVE-2022-36648

The CVE-2022-36648 entry concerns QEMU’s rocker device model, specifically the of_dpa_cmd_add_l2_flood path, in versions 7.0.0 and earlier. The vulnerability is described as allowing remote attackers to crash the host QEMU and potentially execute code on the host by executing a malformed program ...

10CVSS9.4AI score0.01401EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder