Lucene search
K

22 matches found

Tenable Nessus
Tenable Nessus
added 2025/04/18 12:0 a.m.35 views

CBL Mariner 2.0 Security Update: qemu (CVE-2023-3255)

The version of qemu installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-3255 advisory. - A flaw was found in the QEMU built-in VNC server while processing ClientCutText messages. A wrong exit conditio...

6.5CVSS6.7AI score0.01891EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/04/18 12:0 a.m.16 views

Azure Linux 3.0 Security Update: qemu (CVE-2023-3255)

The version of qemu installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-3255 advisory. - A flaw was found in the QEMU built-in VNC server while processing ClientCutText messages. A wrong exit conditio...

6.5CVSS6.7AI score0.01891EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2025/04/17 3:8 p.m.8 views

CVE-2023-3255 affecting package qemu for versions less than 6.2.0-23

CVE-2023-3255 affecting package qemu for versions less than 6.2.0-23. A patched version of the package is available...

6.5CVSS6.9AI score0.01891EPSS
Exploits0
Rosalinux
Rosalinux
added 2025/04/11 9:55 p.m.25 views

Advisory ROSA-SA-2025-2814

Software: qemu-kvm 6.2.0 OS: ROSA Virtualization 3.0 packageevrstring: qemu-kvm-6.2.0-53.rv30.2 CVE-ID: CVE-2021-3750 BDU-ID: 2024-04421 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the QEMU hardware emulator is related to a lack of checks to see if the buffer pointer overlaps with the MMIO...

8.2CVSS8.6AI score0.01891EPSS
Exploits1
Rosalinux
Rosalinux
added 2025/01/28 6:56 p.m.23 views

Advisory ROSA-SA-2025-2641

Software: qemu 7.2.7 OS: ROSA-CHROME packageevrstring: qemu-7.2.7-1 CVE-ID: CVE-2023-3301 BDU-ID: 2024-04418 CVE-Crit: LOW CVE-DESC.: A vulnerability in the virtio-net interface of the QEMU hardware emulator is related to the asynchronous nature of the shutdown allowing a race scenario...

7.8CVSS8.8AI score0.01891EPSS
Exploits1
OpenVAS
OpenVAS
added 2024/12/05 12:0 a.m.17 views

Mageia: Security Advisory (MGASA-2024-0387)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.1AI score0.01891EPSS
Exploits3References8
Tenable Nessus
Tenable Nessus
added 2024/10/23 12:0 a.m.80 views

Oracle Linux 8 : virt:kvm_utils1 (ELSA-2024-12791)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-12791 advisory. - Bounds check for block exceeding page length CVE-2021-3504 resolves: rhbz1950501 - Fix for CVE-2019-9755 heap-based buffer overflow leads to local root...

9.8CVSS7.5AI score0.02363EPSS
Exploits7References2
OpenVAS
OpenVAS
added 2024/06/07 12:0 a.m.39 views

Ubuntu: Security Advisory (USN-6567-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6AI score0.01891EPSS
Exploits3References3
Ubuntu
Ubuntu
added 2024/06/06 12:29 p.m.295 views

USN-6567-2: QEMU regression

USN-6567-1 fixed vulnerabilities QEMU. The fix for CVE-2023-2861 was too restrictive and introduced a behaviour change leading to a regression in certain environments. This update fixes the problem. Original advisory details: Gaoning Pan and Xingwei Li discovered that QEMU incorrectly handled the...

7.1AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/05/23 12:0 a.m.29 views

RHEL 8 : virt:rhel and virt-devel:rhel (RHSA-2024:2962)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:2962 advisory. Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contai...

7CVSS6.9AI score0.01891EPSS
Exploits0References17
Tenable Nessus
Tenable Nessus
added 2024/05/06 12:0 a.m.43 views

Oracle Linux 9 : qemu-kvm (ELSA-2024-2135)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-2135 advisory. - Resolves: RHEL-19629 CVE-2023-6683 qemu-kvm: QEMU: VNC: NULL pointer dereference in qemuclipboardrequest rhel-9 - Resolves: RHEL-2828 CVE-2023-42467...

8.2CVSS7AI score0.01891EPSS
Exploits4References6
CBLMariner
CBLMariner
added 2024/03/19 5:21 p.m.16 views

CVE-2023-3255 affecting package qemu for versions less than 8.2.0-1

CVE-2023-3255 affecting package qemu for versions less than 8.2.0-1. An upgraded version of the package is available that resolves this issue...

6.5CVSS6.9AI score0.01891EPSS
Exploits0
OSV
OSV
added 2023/11/03 11:6 a.m.3 views

OESA-2023-1786 qemu security update

QEMU is a FAST! processor emulator using dynamic translation to achieve good emulation speed. Security Fixes: A flaw was found in the QEMU built-in VNC server while processing ClientCutText messages. A wrong exit condition may lead to an infinite loop when inflating an attacker controlled zlib...

6.5CVSS6.6AI score0.01891EPSS
Exploits0References2
OSV
OSV
added 2023/11/03 11:6 a.m.4 views

OESA-2023-1785 qemu security update

QEMU is a FAST! processor emulator using dynamic translation to achieve good emulation speed. Security Fixes: A flaw was found in the QEMU built-in VNC server while processing ClientCutText messages. A wrong exit condition may lead to an infinite loop when inflating an attacker controlled zlib...

6.5CVSS6.6AI score0.01891EPSS
Exploits0References2
OSV
OSV
added 2023/11/03 11:6 a.m.3 views

OESA-2023-1787 qemu security update

QEMU is a FAST! processor emulator using dynamic translation to achieve good emulation speed. Security Fixes: A flaw was found in the QEMU built-in VNC server while processing ClientCutText messages. A wrong exit condition may lead to an infinite loop when inflating an attacker controlled zlib...

6.5CVSS6.6AI score0.01891EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/10/31 12:0 a.m.24 views

Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2023-3064)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.3AI score0.01891EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/10/07 12:0 a.m.328 views

Oracle Linux 8 : kvm_utils3 (ELSA-2023-12855)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-12855 advisory. - storage: Fix returning of locked objects from 'virStoragePoolObjListSearch' Peter Krempa Orabug: 35644221 CVE-2023-3750 - virpci: Resolve leak in...

7.5CVSS6.9AI score0.01891EPSS
Exploits0References8
NVD
NVD
added 2023/09/13 5:15 p.m.24 views

CVE-2023-3255

A flaw was found in the QEMU built-in VNC server while processing ClientCutText messages. A wrong exit condition may lead to an infinite loop when inflating an attacker controlled zlib buffer in the inflatebuffer function. This could allow a remote authenticated client who is able to send a...

6.5CVSS6.3AI score0.01891EPSS
Exploits0References5
OSV
OSV
added 2023/09/13 5:15 p.m.1 views

BELL-CVE-2023-3255

Bulletin has no description...

6.5CVSS6.3AI score0.01891EPSS
Exploits0References2
CVE
CVE
added 2023/09/13 4:12 p.m.478 views

CVE-2023-3255

CVE-2023-3255 affects the QEMU built-in VNC server. The flaw is in ClientCutText processing where inflate_buffer may exit incorrectly, allowing a remote authenticated VNC client to trigger an infinite loop and cause a denial of service by sending a clipboard payload. Connected advisories note pat...

6.5CVSS6.4AI score0.01891EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder