Lucene search
K

20 matches found

OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2021:1244-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.3AI score0.05447EPSS
Exploits5References31
Veracode
Veracode
added 2020/09/21 6:31 a.m.22 views

Denial Of Service (DoS)

QEMU aka Quick Emulator is vulnerable to denial of service DoS. When built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, it allows local guest OS privileged users to cause a denial of service NULL pointer dereference and QEMU process crash via vectors involving megasas command...

5.5CVSS4.1AI score0.00415EPSS
Exploits0References7Affected Software2
Tenable Nessus
Tenable Nessus
added 2020/07/27 12:0 a.m.35 views

SUSE SLED15 / SLES15 Security Update : qemu (SUSE-SU-2020:2015-1)

This update for qemu to version 4.2.1 fixes the following issues : CVE-2020-10761: Fixed a denial of service in Network Block Device nbd support infrastructure bsc1172710. CVE-2020-13800: Fixed a denial of service possibility in ati-vga emulation bsc1172495. CVE-2020-13659: Fixed a NULL pointer...

6CVSS6.3AI score0.01796EPSS
Exploits0References16
RedhatCVE
RedhatCVE
added 2020/06/01 12:20 p.m.36 views

CVE-2020-13659

A NULL pointer dereference flaw was found in the MegaRAID SAS 8708EM2 emulator of the QEMU. This issue occurs because the addressspacemap API while mapping physical memory into the host's virtual address space, may return NULL without setting the length parameter to zero 0. This flaw allows a gue...

1.9CVSS3.1AI score0.00429EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/18 1:33 a.m.74 views

Security Bulletin: Multiple vulnerabilities in qemu affect PowerKVM

Summary PowerKVM is affected by several vulnerabilities in qemu. These vulnerabilities have been addressed by IBM. Vulnerability Details CVEID: CVE-2016-5338 DESCRIPTION: Qemu, built with the ESP/NCR53C9x controller emulation support, is vulnerable to a denial of service, caused by an out of boun...

9.8CVSS0.9AI score0.0773EPSS
Exploits0Affected Software1
Prion
Prion
added 2017/06/16 10:29 p.m.16 views

Null pointer dereference

QEMU aka Quick Emulator, when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, allows local guest OS privileged users to cause a denial of service NULL pointer dereference and QEMU process crash via vectors involving megasas command processing...

1.9CVSS6.4AI score0.00415EPSS
Exploits0References7Affected Software2
NVD
NVD
added 2017/06/16 10:29 p.m.25 views

CVE-2017-9503

QEMU aka Quick Emulator, when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, allows local guest OS privileged users to cause a denial of service NULL pointer dereference and QEMU process crash via vectors involving megasas command processing...

5.5CVSS6.5AI score0.00415EPSS
Exploits0References7
CVE
CVE
added 2017/06/16 10:0 p.m.193 views

CVE-2017-9503

Technical details about CVE-2017-9503 are not publicly provided in the connected documents. Please monitor for updates.

5.5CVSS6.3AI score0.00415EPSS
Exploits0References7Affected Software1
UbuntuCve
UbuntuCve
added 2017/06/16 12:0 a.m.20 views

CVE-2017-9503

QEMU aka Quick Emulator, when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, allows local guest OS privileged users to cause a denial of service NULL pointer dereference and QEMU process crash via vectors involving megasas command processing...

5.5CVSS6.8AI score0.00415EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2017/03/08 12:0 a.m.48 views

SUSE SLED12 / SLES12 Security Update : qemu (SUSE-SU-2017:0625-1)

This update for qemu fixes several issues. These security issues were fixed : - CVE-2017-5898: The CCID Card device emulator support was vulnerable to an integer overflow flaw allowing a privileged user to crash the Qemu process on the host resulting in DoS bsc1023907. - CVE-2017-5857: The Virtio...

9.9CVSS7.5AI score0.03648EPSS
Exploits0References50
NVD
NVD
added 2016/09/02 2:59 p.m.20 views

CVE-2016-5105

The megasasdcmdcfgread function in hw/scsi/megasas.c in QEMU, when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, uses an uninitialized variable, which allows local guest administrators to read host memory via vectors involving a MegaRAID Firmware Interface MFI command...

4.4CVSS5.2AI score0.0041EPSS
Exploits0References7
Prion
Prion
added 2016/09/02 2:59 p.m.21 views

Out-of-bounds

The megasaslookupframe function in QEMU, when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, allows local guest OS administrators to cause a denial of service out-of-bounds read and crash via unspecified vectors...

1.9CVSS6.5AI score0.00422EPSS
Exploits0References9Affected Software3
Cvelist
Cvelist
added 2016/09/02 2:0 p.m.25 views

CVE-2016-5106

The megasasdcmdsetproperties function in hw/scsi/megasas.c in QEMU, when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, allows local guest administrators to cause a denial of service out-of-bounds write access via vectors involving a MegaRAID Firmware Interface MFI command...

6.6AI score0.00385EPSS
Exploits0References8
Cvelist
Cvelist
added 2016/09/02 2:0 p.m.28 views

CVE-2016-5105

The megasasdcmdcfgread function in hw/scsi/megasas.c in QEMU, when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, uses an uninitialized variable, which allows local guest administrators to read host memory via vectors involving a MegaRAID Firmware Interface MFI command...

5.5AI score0.0041EPSS
Exploits0References7
myhack58
myhack58
added 2016/08/24 12:0 a.m.20 views

Cloud Security Series: 360GearTeam again found QEMU multiple vulnerabilities-vulnerability warning-the black bar safety net

! 2 0 1 6 years and 8 months or so, the odd Tiger 3 6 0 to the QEMU official report a number of QEMU vulnerabilities in. They allow an attacker to attack a virtual machine or the host machine itself, causing a denial of service or arbitrary code execution. 360GearTeamoriginal 3 6 0 cloud security...

2.3AI score
Exploits0
Ubuntu
Ubuntu
added 2016/08/04 6:23 p.m.74 views

USN-3047-1: QEMU vulnerabilities

Li Qiang discovered that QEMU incorrectly handled 53C9X Fast SCSI controller emulation. A privileged attacker inside the guest could use this issue to cause QEMU to crash, resulting in a denial of service, or possibly execute arbitrary code on the host. In the default installation, when QEMU is...

7.8CVSS7AI score0.00701EPSS
Exploits0
myhack58
myhack58
added 2016/06/08 12:0 a.m.21 views

Cloud computing a core component of QEMU even explosion 1 0 pieces of high-risk vulnerabilities-vulnerability warning-the black bar safety net

Since 5 month so far,as cloud computing is an important underlying component of QEMU has been a continuous burst of 1 0 pieces of high-risk vulnerabilities,from the official website of the vulnerability Description,This 1 0 piece vulnerability, respectively, will cause comprises a“virtual machine...

0.7AI score
Exploits0
ArchLinux
ArchLinux
added 2016/06/08 12:0 a.m.44 views

qemu-arch-extra: multiple issues

CVE-2015-8558 denial of service An infinite-loop issue was found in the QEMU emulator built with USB EHCI emulation support. The flaw occurred during communication between the host controller interfaceEHCI and a respective device driver. These two communicate using an isochronous transfer...

7.2CVSS1.5AI score0.00916EPSS
Exploits0References6
ArchLinux
ArchLinux
added 2016/06/08 12:0 a.m.45 views

qemu: multiple issues

CVE-2015-8558 denial of service An infinite-loop issue was found in the QEMU emulator built with USB EHCI emulation support. The flaw occurred during communication between the host controller interfaceEHCI and a respective device driver. These two communicate using an isochronous transfer...

7.2CVSS1.5AI score0.00916EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2016/05/27 5:49 a.m.25 views

CVE-2016-5107

The megasaslookupframe function in QEMU, when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, allows local guest OS administrators to cause a denial of service out-of-bounds read and crash via unspecified vectors...

6CVSS4.3AI score0.00422EPSS
Exploits0References1
Rows per page
Query Builder