Lucene search
K

19 matches found

Tenable Nessus
Tenable Nessus
added 2021/02/01 12:0 a.m.38 views

CentOS 8 : virt:rhel (CESA-2020:4059)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:4059 advisory. - QEMU: slirp: networking out-of-bounds read information disclosure vulnerability CVE-2020-10756 - QEMU: usb: out-of-bounds r/w access issue while...

6.5CVSS6.9AI score0.05447EPSS
Exploits1References3
NVD
NVD
added 2021/01/28 8:15 p.m.15 views

CVE-2020-35517

A flaw was found in qemu. A host privilege escalation issue was found in the virtio-fs shared file system daemon where a privileged guest user is able to create a device special file in the shared directory and use it to r/w access host devices...

8.2CVSS8.2AI score0.00522EPSS
Exploits1References6
OSV
OSV
added 2021/01/28 8:15 p.m.20 views

CVE-2020-35517

A flaw was found in qemu. A host privilege escalation issue was found in the virtio-fs shared file system daemon where a privileged guest user is able to create a device special file in the shared directory and use it to r/w access host devices...

8.2CVSS6.7AI score
Exploits0References6
Debian CVE
Debian CVE
added 2021/01/28 7:13 p.m.24 views

CVE-2020-35517

A flaw was found in qemu. A host privilege escalation issue was found in the virtio-fs shared file system daemon where a privileged guest user is able to create a device special file in the shared directory and use it to r/w access host devices...

8.2CVSS7.9AI score0.00522EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2020/10/06 12:0 a.m.61 views

RHEL 7 : qemu-kvm-rhev (RHSA-2020:4176)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:4176 advisory. KVM Kernel-based Virtual Machine is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages provide the...

5CVSS6.9AI score0.05447EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2020/09/29 10:21 p.m.91 views

Important: Red Hat Security Advisory: qemu-kvm-ma security update

An update for qemu-kvm-ma is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

5CVSS6.8AI score0.05447EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2020/02/13 12:0 a.m.9 views

Net-SNMPd Write Access SNMP-EXTEND-MIB arbitrary code execution (authenticated)

Targets running Net-SNMPd may be vulnerable to remote code execution. If the service user has R/W access and the attacker knows the SNMP community string value, then the attacker can manipulate the target’s SNMP extension MIBs SNMP-EXTEND-MIB to enable and achieve remote code execution on the...

4.4AI score
Exploits0References4
Debian CVE
Debian CVE
added 2018/11/02 10:0 p.m.49 views

CVE-2018-16847

An OOB heap buffer r/w access issue was found in the NVM Express Controller emulation in QEMU. It could occur in nvmecmbops routines in nvme device. A guest user/process could use this flaw to crash the QEMU process resulting in DoS or potentially run arbitrary code with privileges of the QEMU...

7.8CVSS7.1AI score0.00542EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2018/11/02 12:0 a.m.25 views

CVE-2018-16847

An OOB heap buffer r/w access issue was found in the NVM Express Controller emulation in QEMU. It could occur in nvmecmbops routines in nvme device. A guest user/process could use this flaw to crash the QEMU process resulting in DoS or potentially run arbitrary code with privileges of the QEMU...

7.8CVSS7.1AI score0.00542EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2017/12/14 10:15 p.m.57 views

Moderate: Red Hat Security Advisory: qemu-kvm-rhev security update

An update for qemu-kvm-rhev is now available for Red Hat Enterprise Linux OpenStack Platform 6.0 Juno for RHEL 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...

8.8CVSS7.3AI score0.05529EPSS
Exploits0References6
exploitpack
exploitpack
added 2017/10/17 12:0 a.m.23 views

Apple iOS 10.2 (14C92) - Remote Code Execution

Apple iOS 10.2 14C92 - Remote Code Execution Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1317c3 The exploit achieves R/W access to the host's physical memory. This exploit has been tested on the iPhone 7, iOS 10.2 14C92. To run the exploit against different devices or...

7.8AI score
Exploits0
The Hacker News
The Hacker News
added 2017/09/26 11:49 p.m.107 views

Google Researcher Publishes PoC Exploit for Apple iPhone Wi-Fi Chip Hack

You have now another good reason to update your iPhone to newly released iOS 11—a security vulnerability in iOS 10 and earlier now has a working exploit publicly available. Gal Beniamini, a security researcher with Google Project Zero, has discovered a security vulnerability CVE-2017-11120 in...

10CVSS8.9AI score0.09129EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2017/05/11 12:0 a.m.64 views

OracleVM 3.4 : qemu-kvm (OVMSA-2017-0101)

The remote OracleVM system is missing necessary patches to address critical security updates : - kvm-cirrus-avoid-write-only-variables.patch bz1444377 bz1444379 - kvm-cirrus-stop-passing-around-dst-pointers-in-the-blitt .patch - kvm-cirrus-stop-passing-around-src-pointers-in-the-blitt .patch -...

9.9CVSS7.2AI score0.04448EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2017/05/10 12:0 a.m.45 views

Oracle Linux 6 : qemu-kvm (ELSA-2017-1206)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2017-1206 advisory. - Resolves: bz1444377 CVE-2017-7980 qemu-kvm: Qemu: display: cirrus: OOB r/w access issues in bitblt routines rhel-6.9.z - Resolves: bz1444379...

9.9CVSS7.4AI score0.04448EPSS
Exploits0References5
NVD
NVD
added 2016/12/29 10:59 p.m.18 views

CVE-2015-8817

QEMU aka Quick Emulator built to use 'addressspacetranslate' to map an address to a MemoryRegionSection is vulnerable to an OOB r/w access issue. It could occur while doing pcidmaread/write calls. Affects QEMU versions = 1.6.0 and = 2.3.1. A privileged user inside guest could use this flaw to cra...

5.5CVSS6.8AI score0.00402EPSS
Exploits0References11
Prion
Prion
added 2016/12/29 10:59 p.m.27 views

Design/Logic Flaw

QEMU aka Quick Emulator built to use 'addressspacetranslate' to map an address to a MemoryRegionSection is vulnerable to an OOB r/w access issue. It could occur while doing pcidmaread/write calls. Affects QEMU versions = 1.6.0 and = 2.3.1. A privileged user inside guest could use this flaw to cra...

2.1CVSS6.4AI score0.00402EPSS
Exploits0References11Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/07/15 12:0 a.m.62 views

Fedora 22 : 2:qemu (2016-ea3002b577)

CVE-2016-4002: net: buffer overflow in MIPSnet bz 1326083 - CVE-2016-4952 scsi: pvscsi: out-of-bounds access issue - CVE-2016-5106: scsi: megasas: out-of-bounds write bz 1339581 - CVE-2016-5105: scsi: megasas: stack information leakage bz 1339585 - CVE-2016-5107: scsi: megasas: out-of-bounds read...

9.8CVSS6.8AI score0.06336EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2016/03/21 12:0 a.m.42 views

Fedora 23 : xen-4.5.2-9.fc23 (2016-f4504e9445)

Qemu: nvram: OOB r/w access in processing firmware configurations CVE-2016-1714 1296080 Qemu: i386: NULL pointer dereference in vapicwrite CVE-2016-1922 1292767 qemu: Stack-based buffer overflow in megasasctrlgetinfo CVE-2015-8613 1293305 qemu-kvm: Infinite loop and out-of-bounds transfer start i...

8.4CVSS6.8AI score0.06085EPSS
Exploits0References27
Tenable Nessus
Tenable Nessus
added 2016/01/29 12:0 a.m.33 views

Oracle Linux 7 : qemu-kvm (ELSA-2016-0083)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2016-0083 advisory. - Resolves: bz1298047 CVE-2016-1714 qemu-kvm: Qemu: nvram: OOB r/w access in processing firmware configurations rhel-7.2.z Tenable has extracted the preceding...

8.1CVSS7.7AI score0.06085EPSS
Exploits0References2
Rows per page
Query Builder