Lucene search
K

12 matches found

Tenable Nessus
Tenable Nessus
added 2025/04/18 12:0 a.m.11 views

Azure Linux 3.0 Security Update: qemu (CVE-2023-3301)

The version of qemu installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-3301 advisory. - A flaw was found in QEMU. The async nature of hot-unplug enables a race scenario where the net device backend i...

5.6CVSS6.5AI score0.00251EPSS
Exploits0References2
Redos
Redos
added 2024/06/06 12:0 a.m.42 views

ROS-20240606-01

A vulnerability in QEMU's USB EHCI controller emulation is related to the lack of checks if the buffer pointer overlaps with the MMIO register when transmitting USB packets. the buffer pointer overlaps with the MMIO region when transmitting USB packets. Exploitation of the vulnerability could all...

8.2CVSS6.9AI score0.01891EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.34 views

EulerOS Virtualization 2.11.0 : qemu (EulerOS-SA-2023-3389)

According to the versions of the qemu package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in QEMU. The async nature of hot-unplug enables a race scenario where the net device backend is cleared before the...

5.6CVSS6.5AI score0.00251EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/11/21 12:0 a.m.66 views

Oracle Linux 8 : virt:ol / and / virt-devel:rhel (ELSA-2023-6980)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-6980 advisory. - Fix CVE-2022-2211 Denial of Service in --key parameter resolves: rhbz2101280 - Fixes: CVE-2022-40284 - Fixes: CVE-2021-46790, CVE-2022-30783,...

9.8CVSS6.8AI score0.01848EPSS
Exploits3References3
Tenable Nessus
Tenable Nessus
added 2023/09/22 12:0 a.m.42 views

Oracle Linux 7 : qemu (ELSA-2023-12834)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-12834 advisory. - virtio-crypto: verify src&dst buffer length for sym request Zhenwei Pi Orabug: 35724113 CVE-2023-3180 - hw/scsi/lsi53c895a: Fix reentrancy issues in...

6.5CVSS7AI score0.00269EPSS
Exploits0References4
NVD
NVD
added 2023/09/13 5:15 p.m.17 views

CVE-2023-3301

A flaw was found in QEMU. The async nature of hot-unplug enables a race scenario where the net device backend is cleared before the virtio-net pci frontend has been unplugged. A malicious guest could use this time window to trigger an assertion and cause a denial of service...

5.6CVSS6.2AI score0.00251EPSS
Exploits0References3
OSV
OSV
added 2023/09/13 5:15 p.m.32 views

CVE-2023-3301

A flaw was found in QEMU. The async nature of hot-unplug enables a race scenario where the net device backend is cleared before the virtio-net pci frontend has been unplugged. A malicious guest could use this time window to trigger an assertion and cause a denial of service...

5.6CVSS6.8AI score0.00251EPSS
Exploits0References3
Prion
Prion
added 2023/09/13 5:15 p.m.13 views

Sql injection

A flaw was found in QEMU. The async nature of hot-unplug enables a race scenario where the net device backend is cleared before the virtio-net pci frontend has been unplugged. A malicious guest could use this time window to trigger an assertion and cause a denial of service...

1CVSS5.4AI score0.00251EPSS
Exploits0References3Affected Software2
UbuntuCve
UbuntuCve
added 2023/09/13 5:15 p.m.28 views

CVE-2023-3301

A flaw was found in QEMU. The async nature of hot-unplug enables a race scenario where the net device backend is cleared before the virtio-net pci frontend has been unplugged. A malicious guest could use this time window to trigger an assertion and cause a denial of service...

5.6CVSS6.6AI score0.00251EPSS
Exploits0References2
CVE
CVE
added 2023/09/13 4:9 p.m.408 views

CVE-2023-3301

CVE-2023-3301 describes a race condition in QEMU’s hot-unplug of virtio-net NICs where the net device backend can be cleared before the PCI frontend is unplugged, enabling a malicious guest to trigger an assertion and cause a denial of service. Public documents confirm a vulnerability in QEMU wit...

5.6CVSS5.9AI score0.00251EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2023/09/13 4:9 p.m.27 views

CVE-2023-3301

A flaw was found in QEMU. The async nature of hot-unplug enables a race scenario where the net device backend is cleared before the virtio-net pci frontend has been unplugged. A malicious guest could use this time window to trigger an assertion and cause a denial of service...

5.6CVSS6.3AI score0.00251EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2023/08/01 1:19 p.m.27 views

CVE-2023-3301

A flaw was found in QEMU. The async nature of hot-unplug enables a race scenario where the net device backend is cleared before the virtio-net pci frontend has been unplugged. A malicious guest could use this time window to trigger an assertion and cause a denial of service...

5.6CVSS6.6AI score0.00251EPSS
Exploits0References3
Rows per page
Query Builder