Lucene search
K

106 matches found

OSV
OSV
added 2017/03/27 3:59 p.m.6 views

ALPINE-CVE-2017-5931

Integer overflow in hw/virtio/virtio-crypto.c in QEMU aka Quick Emulator allows local guest OS privileged users to cause a denial of service QEMU process crash or possibly execute arbitrary code on the host via a crafted virtio-crypto request, which triggers a heap-based buffer overflow...

8.8CVSS7.9AI score0.00534EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2017/02/27 11:12 p.m.7 views

Qemu: display: cirrus: oob access while doing bitblt copy backward mode

Quick emulator QEMU built with the Cirrus CLGD 54xx VGA emulator support is vulnerable to an out-of-bounds access issue. It could occur while copying VGA data via bitblt copy in backward mode. A privileged user inside a guest could use this flaw to crash the QEMU process resulting in DoS or...

9.1CVSS7.7AI score0.03648EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2016/07/07 12:0 a.m.7 views

The vulnerability of VMware Workstation’s hypervisor allows users of the guest operating system to execute code on the host operating system.

The vulnerability of the TPView.dll library in VMware Workstation involves resource management errors. Exploiting this vulnerability allows users of the guest operating system to execute code on the host operating system...

5.8CVSS5.8AI score0.00747EPSS
Exploits0References2Affected Software1
RedHat Linux
RedHat Linux
added 2016/01/28 4:13 p.m.3 views

Qemu: nvram: OOB r/w access in processing firmware configurations

An out-of-bounds read/write flaw was discovered in the way QEMU's Firmware Configuration device emulation processed certain firmware configurations. A privileged CAPSYSRAWIO guest user could use this flaw to crash the QEMU process instance or, potentially, execute arbitrary code on the host with...

8.1CVSS7.7AI score0.06085EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2014/08/19 9:22 a.m.7 views

Qemu: qcow1: validate image size to avoid out-of-bounds memory access

An integer overflow flaw was found in the QEMU block driver for QCOW version 1 disk images. A user able to alter the QEMU disk image files loaded by a guest could use this flaw to corrupt QEMU process memory on the host, which could potentially result in arbitrary code execution on the host with...

4.6CVSS7.2AI score0.00605EPSS
Exploits1References4
OSV
OSV
added 2014/02/20 12:0 a.m.3 views

UBUNTU-CVE-2013-4536

An user able to alter the savevm data either on the disk or over the wire during migration could use this flaw to to corrupt QEMU process memory on the destination host, which could potentially result in arbitrary code execution on the host with the privileges of the QEMU process...

7.8CVSS7.3AI score0.00298EPSS
Exploits0References5
Rows per page
Query Builder