Lucene search
K

13 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in Qemu

A NULL pointer dereference flaw was discovered in the floppy disk emulator of QEMU. This issue occurs when processing read/write ioport commands, especially if the selected floppy drive is not initialized using a block device. This flaw allows a privileged guest user to crash the QEMU process on...

6.5CVSS6.5AI score0.00479EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-10439

Malware in sbrugna...

7.5CVSS8AI score0.00364EPSS
Exploits0References12
Debian CVE
Debian CVE
added 2025/09/17 2:56 p.m.4 views

CVE-2023-53356

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: userial: Add null pointer check in gserialsuspend Consider a case where gserialdisconnect has already cleared gser-ioport. And if gserialsuspend gets called afterwards, it will lead to accessing of gser-ioport and th...

5.5CVSS5.3AI score0.00172EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 5:11 a.m.2 views

SUSE CVE-2015-8743

QEMU aka Quick Emulator built with the NE2000 device emulation support is vulnerable to an OOB r/w access issue. It could occur while performing 'ioport' r/w operations. A privileged CAPSYSRAWIO user/process could use this flaw to leak or corrupt QEMU memory bytes...

7.1CVSS6.8AI score0.00445EPSS
Exploits0References18
RedHat Linux
RedHat Linux
added 2022/01/31 3:15 p.m.9 views

QEMU: block: fdc: null pointer dereference may lead to guest crash

A NULL pointer dereference flaw was found in the floppy disk emulator of QEMU. This issue occurs while processing read/write ioport commands if the selected floppy drive is not initialized with a block device. This flaw allows a privileged guest user to crash the QEMU process on the host, resulti...

6.5CVSS6.7AI score0.00479EPSS
Exploits1References6
OSV
OSV
added 2021/05/26 10:15 p.m.1 views

DEBIAN-CVE-2021-20196

A NULL pointer dereference flaw was found in the floppy disk emulator of QEMU. This issue occurs while processing read/write ioport commands if the selected floppy drive is not initialized with a block device. This flaw allows a privileged guest user to crash the QEMU process on the host, resulti...

6.5CVSS6.4AI score0.00479EPSS
Exploits1References1
OSV
OSV
added 2021/05/26 10:15 p.m.2 views

UBUNTU-CVE-2021-20196

A NULL pointer dereference flaw was found in the floppy disk emulator of QEMU. This issue occurs while processing read/write ioport commands if the selected floppy drive is not initialized with a block device. This flaw allows a privileged guest user to crash the QEMU process on the host, resulti...

6.5CVSS6.8AI score0.00479EPSS
Exploits1References6
Veracode
Veracode
added 2019/01/15 9:15 a.m.25 views

Privilege Escalation

xen is vulnerable to privilege escalation attacks. The vulnerability exists as the 1 ioportread and 2 ioportwrite functions in Xen, when qemu is used as a device model within Xen, might allow local x86 HVM guest OS administrators to gain qemu process privileges via vectors involving an out-of-ran...

7.5CVSS7.8AI score0.00364EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2017/02/17 2:59 a.m.16 views

CVE-2016-9637

The 1 ioportread and 2 ioportwrite functions in Xen, when qemu is used as a device model within Xen, might allow local x86 HVM guest OS administrators to gain qemu process privileges via vectors involving an out-of-range ioport access...

7.5CVSS7.5AI score0.00364EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2017/02/17 2:59 a.m.28 views

CVE-2016-9637

The 1 ioportread and 2 ioportwrite functions in Xen, when qemu is used as a device model within Xen, might allow local x86 HVM guest OS administrators to gain qemu process privileges via vectors involving an out-of-range ioport access...

7.5CVSS7.1AI score0.00364EPSS
Exploits0References3
Cvelist
Cvelist
added 2017/02/16 6:0 p.m.25 views

CVE-2016-9637

The 1 ioportread and 2 ioportwrite functions in Xen, when qemu is used as a device model within Xen, might allow local x86 HVM guest OS administrators to gain qemu process privileges via vectors involving an out-of-range ioport access...

6.8AI score0.00364EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2017/02/16 6:0 p.m.26 views

CVE-2016-9637

The 1 ioportread and 2 ioportwrite functions in Xen, when qemu is used as a device model within Xen, might allow local x86 HVM guest OS administrators to gain qemu process privileges via vectors involving an out-of-range ioport access...

7.5CVSS8.1AI score0.00364EPSS
Exploits0
OSV
OSV
added 2016/01/04 12:0 a.m.1 views

UBUNTU-CVE-2015-8743

QEMU aka Quick Emulator built with the NE2000 device emulation support is vulnerable to an OOB r/w access issue. It could occur while performing 'ioport' r/w operations. A privileged CAPSYSRAWIO user/process could use this flaw to leak or corrupt QEMU memory bytes...

7.1CVSS6.9AI score0.00445EPSS
Exploits0References4
Rows per page
Query Builder