Lucene search
+L

170 matches found

Tenable Nessus
Tenable Nessus
added 2022/02/28 12:0 a.m.37 views

Ubuntu 18.04 LTS / 20.04 LTS : QEMU vulnerabilities (USN-5307-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5307-1 advisory. Gaoning Pan discovered that QEMU incorrectly handled the floppy disk emulator. An attacker inside the guest could use this issue to cause QEM...

8.5CVSS7.3AI score0.02904EPSS
Exploits3References12
RedHat Linux
RedHat Linux
added 2022/01/31 3:15 p.m.10 views

QEMU: block: fdc: null pointer dereference may lead to guest crash

A NULL pointer dereference flaw was found in the floppy disk emulator of QEMU. This issue occurs while processing read/write ioport commands if the selected floppy drive is not initialized with a block device. This flaw allows a privileged guest user to crash the QEMU process on the host, resulti...

6.5CVSS6.7AI score0.00475EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2022/01/26 12:0 a.m.39 views

SUSE SLED15: qemu / qemu-arm / qemu-audio-alsa / qemu-audio-pa / etc (SUSE-SU-2022:0177-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:0177-1 advisory. - CVE-2021-20196: Fixed null pointer dereference that may lead to guest crash bsc1181361. Tenable has extracted the...

6.5CVSS6.8AI score0.00475EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2022/01/26 12:0 a.m.36 views

openSUSE 15 Security Update : qemu (openSUSE-SU-2022:0177-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2022:0177-1 advisory. - A NULL pointer dereference flaw was found in the floppy disk emulator of QEMU. This issue occurs while processing read/write ioport commands if th...

6.5CVSS6.5AI score0.00475EPSS
Exploits1References4
Veracode
Veracode
added 2022/01/15 4:40 p.m.51 views

Denial Of Service (DoS)

qemu is vulnerable to Denial Of Service DoS. The vulnerability exists in the floppy disk emulator of QEMU allows privileged user to crash the QEMU...

6.5CVSS6.3AI score0.00475EPSS
Exploits1References11Affected Software8
Veracode
Veracode
added 2021/12/16 9:31 p.m.51 views

Denial Of Service (DoS)

qemu is vulnerable to Denial Of Service DoS. The vulnerability exists due to a heap buffer overflow was found in the floppy disk emulator of QEMU in fdctrltransferhandler in hw/block/fdc.c while processing DMA read data transfers from the floppy drive to the guest system...

6.1CVSS6.7AI score0.00485EPSS
Exploits1References7Affected Software6
NVD
NVD
added 2021/05/26 10:15 p.m.16 views

CVE-2021-20196

A NULL pointer dereference flaw was found in the floppy disk emulator of QEMU. This issue occurs while processing read/write ioport commands if the selected floppy drive is not initialized with a block device. This flaw allows a privileged guest user to crash the QEMU process on the host, resulti...

6.5CVSS0.00475EPSS
Exploits1References5
OSV
OSV
added 2021/05/26 10:15 p.m.25 views

CVE-2021-20196

A NULL pointer dereference flaw was found in the floppy disk emulator of QEMU. This issue occurs while processing read/write ioport commands if the selected floppy drive is not initialized with a block device. This flaw allows a privileged guest user to crash the QEMU process on the host, resulti...

6.5CVSS6.3AI score
Exploits0References5
Prion
Prion
added 2021/05/26 10:15 p.m.26 views

Null pointer dereference

A NULL pointer dereference flaw was found in the floppy disk emulator of QEMU. This issue occurs while processing read/write ioport commands if the selected floppy drive is not initialized with a block device. This flaw allows a privileged guest user to crash the QEMU process on the host, resulti...

2.1CVSS6.1AI score0.00475EPSS
Exploits1References5Affected Software2
UbuntuCve
UbuntuCve
added 2021/05/26 10:15 p.m.34 views

CVE-2021-20196

A NULL pointer dereference flaw was found in the floppy disk emulator of QEMU. This issue occurs while processing read/write ioport commands if the selected floppy drive is not initialized with a block device. This flaw allows a privileged guest user to crash the QEMU process on the host, resulti...

6.5CVSS6.8AI score0.00475EPSS
Exploits1References5
Cvelist
Cvelist
added 2021/05/26 9:16 p.m.29 views

CVE-2021-20196

A NULL pointer dereference flaw was found in the floppy disk emulator of QEMU. This issue occurs while processing read/write ioport commands if the selected floppy drive is not initialized with a block device. This flaw allows a privileged guest user to crash the QEMU process on the host, resulti...

6.8AI score0.00475EPSS
Exploits1References5
AlpineLinux
AlpineLinux
added 2021/05/26 9:16 p.m.32 views

CVE-2021-20196

A NULL pointer dereference flaw was found in the floppy disk emulator of QEMU. This issue occurs while processing read/write ioport commands if the selected floppy drive is not initialized with a block device. This flaw allows a privileged guest user to crash the QEMU process on the host, resulti...

6.5CVSS6.7AI score0.00475EPSS
Exploits1
Debian CVE
Debian CVE
added 2021/05/26 9:16 p.m.34 views

CVE-2021-20196

A NULL pointer dereference flaw was found in the floppy disk emulator of QEMU. This issue occurs while processing read/write ioport commands if the selected floppy drive is not initialized with a block device. This flaw allows a privileged guest user to crash the QEMU process on the host, resulti...

6.5CVSS6.5AI score0.00475EPSS
Exploits1
CVE
CVE
added 2021/05/26 9:16 p.m.289 views

CVE-2021-20196

CVE-2021-20196 : In QEMU’s floppy disk emulator, a NULL pointer dereference can occur when processing read/write ioport commands if the selected floppy drive isn’t initialized with a block device. This may allow a privileged guest to crash the QEMU process on the host, causing a denial of service...

6.5CVSS6.1AI score0.00475EPSS
Exploits1References5Affected Software1
Pen Test Partners Blog
Pen Test Partners Blog
added 2021/05/21 6:33 a.m.60 views

Getting a persistent shell on a 747 IFE

TL:DR The Coronavirus pandemic has hit the airline industry hard. One sad consequence was early retirement of most of the 747 passenger fleet. This does however create opportunities for aviation security research, as airframes are parked up before parting out in breakers yards. This 747 was flyin...

8.2AI score
Exploits0
OSV
OSV
added 2021/05/06 4:15 p.m.2 views

DEBIAN-CVE-2021-3507

A heap buffer overflow was found in the floppy disk emulator of QEMU up to 6.0.0 including. It could occur in fdctrltransferhandler in hw/block/fdc.c while processing DMA read data transfers from the floppy drive to the guest system. A privileged guest user could use this flaw to crash the QEMU...

6.1CVSS6.7AI score0.00485EPSS
Exploits1References1
NVD
NVD
added 2021/05/06 4:15 p.m.18 views

CVE-2021-3507

A heap buffer overflow was found in the floppy disk emulator of QEMU up to 6.0.0 including. It could occur in fdctrltransferhandler in hw/block/fdc.c while processing DMA read data transfers from the floppy drive to the guest system. A privileged guest user could use this flaw to crash the QEMU...

6.1CVSS0.00485EPSS
Exploits1References3
OSV
OSV
added 2021/05/06 4:15 p.m.33 views

CVE-2021-3507

A heap buffer overflow was found in the floppy disk emulator of QEMU up to 6.0.0 including. It could occur in fdctrltransferhandler in hw/block/fdc.c while processing DMA read data transfers from the floppy drive to the guest system. A privileged guest user could use this flaw to crash the QEMU...

6.1CVSS6.5AI score
Exploits0References3
Prion
Prion
added 2021/05/06 4:15 p.m.26 views

Heap overflow

A heap buffer overflow was found in the floppy disk emulator of QEMU up to 6.0.0 including. It could occur in fdctrltransferhandler in hw/block/fdc.c while processing DMA read data transfers from the floppy drive to the guest system. A privileged guest user could use this flaw to crash the QEMU...

3.6CVSS6.2AI score0.00485EPSS
Exploits1References3Affected Software3
UbuntuCve
UbuntuCve
added 2021/05/06 4:15 p.m.41 views

CVE-2021-3507

A heap buffer overflow was found in the floppy disk emulator of QEMU up to 6.0.0 including. It could occur in fdctrltransferhandler in hw/block/fdc.c while processing DMA read data transfers from the floppy drive to the guest system. A privileged guest user could use this flaw to crash the QEMU...

6.1CVSS6.9AI score0.00485EPSS
Exploits1References3
Rows per page
Query Builder