Lucene search
K

19 matches found

OpenVAS
OpenVAS
added 2025/09/16 12:0 a.m.3 views

Ubuntu: Security Advisory (USN-7744-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.2CVSS6.8AI score0.01027EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2025/05/07 12:0 a.m.8 views

RockyLinux 8 : virt:rhel and virt-devel:rhel (RLSA-2024:6964)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:6964 advisory. QEMU: virtio: DMA reentrancy issue leads to double free vulnerability CVE-2024-3446 QEMU: Denial of Service via Improper Synchronization in QEMU NBD Serv...

8.2CVSS7.5AI score0.01027EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2024-3446

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A double free vulnerability was found in QEMU virtio devices virtio-gpu, virtio-serial-bus, virtio- crypto, where the memreentrancyguard flag insufficiently...

8.2CVSS7.7AI score0.00278EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2024/12/05 12:0 a.m.17 views

Mageia: Security Advisory (MGASA-2024-0387)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.1AI score0.01891EPSS
Exploits3References8
AlmaLinux
AlmaLinux
added 2024/11/12 12:0 a.m.17 views

Moderate: qemu-kvm security update

Kernel-based Virtual Machine KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM. Security Fixes: QEMU: SR-IOV: improper validation of NumVFs leads to buffer overflow...

8.2CVSS7AI score0.01027EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2024/09/24 3:34 a.m.339 views

Moderate: Red Hat Security Advisory: virt:rhel and virt-devel:rhel security update

An update for the virt:rhel and virt-devel:rhel module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is availab...

8.2CVSS7.1AI score0.01027EPSS
Exploits0References4
AlmaLinux
AlmaLinux
added 2024/09/24 12:0 a.m.31 views

Moderate: virt:rhel and virt-devel:rhel security update

Kernel-based Virtual Machine KVM offers a full virtualization solution forLinux on numerous hardware platforms. The virt:rhel module contains packageswhich provide user-space components used to run virtual machines using KVM.The packages also provide APIs for managing and interacting with the...

8.2CVSS7.2AI score0.01027EPSS
Exploits0References8
Oracle linux
Oracle linux
added 2024/09/19 12:0 a.m.28 views

qemu-kvm security update

7.2.0-15.el9 - migration: abort on destination if switchover limit exceeded Elena Ufimtseva - migration: introduce strict switchover SLA Elena Ufimtseva - migration: add error to MigrationIncomingState Elena Ufimtseva - migration: Set migration status early in incoming side Fabiano Rosas -...

8.2CVSS8AI score0.00529EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/09/19 12:0 a.m.35 views

Oracle Linux 9 : qemu-kvm (ELSA-2024-12674)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12674 advisory. - hw/virtio/virtio-crypto: Protect from DMA re-entrancy bugs Philippe Mathieu-Daude Orabug: 36869694 CVE-2024-3446 - hw/char/virtio-serial-bus: Protec...

8.2CVSS6.5AI score0.00529EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/09/02 12:0 a.m.37 views

Oracle Linux 8 : virt:kvm_utils3 (ELSA-2024-12604)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12604 advisory. - Fix CVE-2022-0485: Fail nbdcopy if NBD read or write fails resolves: rhbz2045718 - Contains fix for NBD Protocol Downgrade Attack CVE-2019-14842. -...

9.8CVSS7.7AI score0.02363EPSS
Exploits6References6
Tenable Nessus
Tenable Nessus
added 2024/08/21 12:0 a.m.30 views

EulerOS Virtualization 2.11.1 : qemu (EulerOS-SA-2024-2176)

According to the versions of the qemu package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : QEMU is a FAST! processor emulator using dynamic translation to achieve good emulation speed.QEMU has two operating modes: Full system...

8.2CVSS7.8AI score0.00552EPSS
Exploits1References3
Amazon
Amazon
added 2024/06/24 12:0 a.m.34 views

Important: qemu

Issue Overview: A double free vulnerability was found in QEMU virtio devices virtio-gpu, virtio-serial-bus, virtio-crypto, where the memreentrancyguard flag insufficiently protects against DMA reentrancy issues. This issue could allow a malicious privileged guest user to crash the QEMU process on...

8.2CVSS8AI score0.00278EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/06/06 12:0 a.m.44 views

QEMU < 9.0.0 Multiple Vulnerabilities

The version of QEMU installed on the remote Windows host is prior to 9.0.0 and therefore vulnerable to the following: - A double free vulnerability was found in QEMU virtio devices virtio-gpu, virtio-serial-bus, virtio-crypto, where the memreentrancyguard flag insufficiently protects against DMA...

8.8CVSS7.4AI score0.01397EPSS
Exploits3References11
OpenVAS
OpenVAS
added 2024/04/27 12:0 a.m.36 views

openSUSE Security Advisory (SUSE-SU-2024:1438-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.2CVSS7.2AI score0.01261EPSS
Exploits1References7
OpenVAS
OpenVAS
added 2024/04/25 12:0 a.m.30 views

openSUSE: Security Advisory for qemu (SUSE-SU-2024:1394-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.2AI score0.01397EPSS
Exploits2References2
OSV
OSV
added 2024/04/23 9:16 a.m.9 views

SUSE-SU-2024:1394-1 Security update for qemu

This update for qemu fixes the following issues: - CVE-2023-3019: Fixed heap use-after-free in e1000ewritepackettoguest bsc1213269 - CVE-2023-6683: Fixed NULL pointer dereference in qemuclipboardrequest bsc1218889 - CVE-2024-24474: Fixed integer overflow results in buffer overflow via SCSI comman...

8.8CVSS7.9AI score0.01397EPSS
Exploits2References11
OSV
OSV
added 2024/04/09 8:15 p.m.5 views

CVE-2024-3446

A double free vulnerability was found in QEMU virtio devices virtio-gpu, virtio-serial-bus, virtio-crypto, where the memreentrancyguard flag insufficiently protects against DMA reentrancy issues. This issue could allow a malicious privileged guest user to crash the QEMU process on the host,...

8.2CVSS7.8AI score0.00278EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2024/04/09 8:15 p.m.24 views

CVE-2024-3446

A double free vulnerability was found in QEMU virtio devices virtio-gpu, virtio-serial-bus, virtio-crypto, where the memreentrancyguard flag insufficiently protects against DMA reentrancy issues. This issue could allow a malicious privileged guest user to crash the QEMU process on the host,...

8.2CVSS7.2AI score0.00278EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/04/09 7:34 p.m.31 views

CVE-2024-3446 Qemu: virtio: dma reentrancy issue leads to double free vulnerability

A double free vulnerability was found in QEMU virtio devices virtio-gpu, virtio-serial-bus, virtio-crypto, where the memreentrancyguard flag insufficiently protects against DMA reentrancy issues. This issue could allow a malicious privileged guest user to crash the QEMU process on the host,...

8.2CVSS7.4AI score0.00278EPSS
Exploits0References4
Rows per page
Query Builder