Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Microsoft CVE
Microsoft CVEadded 2020/08/18 7:0 a.m.3 views

An issue was discovered in ide_dma_cb() in hw/ide/core.c in QEMU 2.4.0 through 4.2.0. The guest system can crash the QEMU process in the host system via a special SCSI_IOCTL_SEND_COMMAND. It hits an assertion that implies that the size of successful DMA transfers there must be a multiple of 512 (the size of a sector). NOTE: a member of the QEMU security team disputes the significance of this issue because a "privileged guest user has many ways to cause similar DoS effect without triggering this assert.

...

7.5CVSS8.2AI score0.00537EPSS
Exploits1
CNVD
CNVDadded 2020/01/06 12:0 a.m.2 views

QEMU 'ide_dma_cb()' function denial of service vulnerability

QEMU Quick Emulator is a set of simulation processor software by French software developer Fabrice Bellard. The software is fast, cross-platform and other characteristics. A security vulnerability exists in the 'idedmacb' function in the hw/ide/core.c file in QEMU versions 2.4.0 through 4.2.0. An...

7.5CVSS8.4AI score0.00537EPSS
Exploits1References1
OSV
OSVadded 2019/12/31 4:15 a.m.1 views

DEBIAN-CVE-2019-20175

An issue was discovered in idedmacb in hw/ide/core.c in QEMU 2.4.0 through 4.2.0. The guest system can crash the QEMU process in the host system via a special SCSIIOCTLSENDCOMMAND. It hits an assertion that implies that the size of successful DMA transfers there must be a multiple of 512 the size...

7.5CVSS7.6AI score0.00537EPSS
Exploits1References1
OSV
OSVadded 2015/11/06 9:59 p.m.1 views

DEBIAN-CVE-2015-6855

hw/ide/core.c in QEMU does not properly restrict the commands accepted by an ATAPI device, which allows guest users to cause a denial of service or possibly have unspecified other impact via certain IDE commands, as demonstrated by a WINREADNATIVEMAX command to an empty drive, which triggers a...

7.5CVSS9.5AI score0.04251EPSS
Exploits0References1
CNVD
CNVDadded 2015/09/22 12:0 a.m.1 views

QEMU 'hw/ide/core.c' Denial of Service Vulnerability

QEMU is a suite of analog processor software developed by French programmer Fabrice Bellard. A denial of service vulnerability exists in QEMU. An attacker could exploit this vulnerability to crash a QEMU instance, causing a denial of service...

7.5CVSS7.8AI score0.04251EPSS
Exploits0References1
OSV
OSVadded 2015/09/11 12:0 a.m.0 views

UBUNTU-CVE-2015-6855

hw/ide/core.c in QEMU does not properly restrict the commands accepted by an ATAPI device, which allows guest users to cause a denial of service or possibly have unspecified other impact via certain IDE commands, as demonstrated by a WINREADNATIVEMAX command to an empty drive, which triggers a...

7.5CVSS7AI score0.04251EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2014/04/22 12:0 a.m.1 views

PT-2014-4951 · Qemu +5 · Qemu +5

Name of the Vulnerable Software and Affected Versions: QEMU versions prior to 2.0 Description: The issue is caused by an off-by-one error in the cmd smart function in the smart self test in hw/ide/core.c. This error can be triggered by a SMART EXECUTE OFFLINE command, leading to a buffer underflo...

8.8CVSS7AI score0.04287EPSS
Exploits5References90
Rows per page
Query Builder