Lucene search
K

91 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.6 views

Astra Linux – Vulnerability in Qemu

A reentrancy issue related to DMA was discovered in the USB EHCI controller emulation of QEMU. EHCI does not verify whether the Buffer Pointer overlaps with its MMIO region when transferring USB packets. Crafted content may be written to the controller’s registers, potentially triggering...

8.2CVSS7AI score0.0053EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-27025

Malware in sbrugna...

8.2CVSS6.8AI score0.0053EPSS
Exploits1References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2016-10698

Malware in sbrugna...

6.5CVSS6.7AI score0.00367EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2017-18309

Malware in sbrugna...

5.5CVSS6.7AI score0.00431EPSS
Exploits0References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-3282

Malware in sbrugna...

5.5CVSS6.9AI score0.0042EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2020-25723

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A reachable assertion issue was found in the USB EHCI emulation code of QEMU. It could occur while processing USB requests due to missing handling of DMA memory...

3.2CVSS6.7AI score0.00357EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/08/06 12:0 a.m.27 views

CBL Mariner 2.0 Security Update: qemu / qemu-kvm (CVE-2021-3750)

The version of qemu / qemu-kvm installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-3750 advisory. - A DMA reentrancy issue was found in the USB EHCI controller emulation of QEMU. EHCI does not verify ...

8.2CVSS7.1AI score0.0053EPSS
Exploits1References2
Redos
Redos
added 2024/06/06 12:0 a.m.42 views

ROS-20240606-01

A vulnerability in QEMU's USB EHCI controller emulation is related to the lack of checks if the buffer pointer overlaps with the MMIO register when transmitting USB packets. the buffer pointer overlaps with the MMIO region when transmitting USB packets. Exploitation of the vulnerability could all...

8.2CVSS6.9AI score0.01405EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/04/24 12:0 a.m.44 views

SUSE SLES12: qemu / qemu-arm / qemu-audio-alsa / qemu-audio-oss / qemu-audio-pa / etc (SUSE-SU-2024:1395-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:1395-1 advisory. - CVE-2021-3750: Fixed DMA reentrancy issue that could lead to use-after-free bsc1190011 - CVE-2022-0216: Fixed use-after-free in...

8.2CVSS7AI score0.01606EPSS
Exploits2References16
Tenable Nessus
Tenable Nessus
added 2024/02/29 12:0 a.m.38 views

CentOS 9 : qemu-kvm-8.0.0-8.el9

The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the qemu-kvm-8.0.0-8.el9 build changelog. - A DMA reentrancy issue was found in the USB EHCI controller emulation of QEMU. EHCI does not verify if the Buffer Pointer overlaps with...

8.2CVSS7.3AI score0.0053EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2024/01/30 1:35 p.m.3 views

QEMU: hcd-ehci: DMA reentrancy issue leads to use-after-free

A DMA reentrancy issue was found in the USB EHCI controller emulation of QEMU. EHCI does not verify if the Buffer Pointer overlaps with its MMIO region when it transfers the USB packets. Crafted content may be written to the controller's registers and trigger undesirable actions such as reset whi...

8.2CVSS7.3AI score0.0053EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2024/01/25 12:0 a.m.41 views

RHEL 8 : virt:rhel and virt-devel:rhel (RHSA-2024:0404)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:0404 advisory. Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contai...

8.2CVSS7.4AI score0.01606EPSS
Exploits1References10
Tenable Nessus
Tenable Nessus
added 2023/11/21 12:0 a.m.66 views

Oracle Linux 8 : virt:ol / and / virt-devel:rhel (ELSA-2023-6980)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-6980 advisory. - Fix CVE-2022-2211 Denial of Service in --key parameter resolves: rhbz2101280 - Fixes: CVE-2022-40284 - Fixes: CVE-2021-46790, CVE-2022-30783,...

9.8CVSS6.8AI score0.01848EPSS
Exploits3References3
Tenable Nessus
Tenable Nessus
added 2023/11/14 12:0 a.m.65 views

RHEL 8 : virt:rhel and virt-devel:rhel (RHSA-2023:6980)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:6980 advisory. Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contai...

8.2CVSS6.8AI score0.0053EPSS
Exploits1References20
Tenable Nessus
Tenable Nessus
added 2023/11/06 12:0 a.m.68 views

Rocky Linux 9 : qemu-kvm (RLSA-2022:7967)

The remote Rocky Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2022:7967 advisory. - A heap buffer overflow was found in the floppy disk emulator of QEMU up to 6.0.0 including. It could occur in fdctrltransferhandler in hw/block/fdc.c...

8.2CVSS7.4AI score0.0053EPSS
Exploits4References55
Tenable Nessus
Tenable Nessus
added 2023/09/28 12:0 a.m.38 views

SUSE SLES15: qemu / qemu-arm / qemu-audio-alsa / qemu-audio-oss / qemu-audio-pa / etc (SUSE-SU-2023:3800-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:3800-1 advisory. - CVE-2022-26354: Fixed a memory leak due to a missing virtqueue detach on error. bsc1198712 - CVE-2021-3929: Fixed an use-after-fr...

8.8CVSS6.9AI score0.01606EPSS
Exploits3References29
Tenable Nessus
Tenable Nessus
added 2023/08/30 12:0 a.m.36 views

SUSE SLES15: qemu / qemu-SLOF / qemu-arm / qemu-audio-alsa / qemu-audio-pa / etc (SUSE-SU-2023:3444-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:3444-1 advisory. - CVE-2023-0330: Fixed a stack overflow due to a DMA reentrancy issue. bsc1207205 - CVE-2023-3354: Fixed a remote unauthenticated D...

8.2CVSS7AI score0.01606EPSS
Exploits2References19
OpenVAS
OpenVAS
added 2023/06/07 12:0 a.m.29 views

Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2023-2134)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.9AI score0.02701EPSS
Exploits9References2
OpenVAS
OpenVAS
added 2023/06/07 12:0 a.m.29 views

Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2023-2082)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.9AI score0.02701EPSS
Exploits9References2
Tenable Nessus
Tenable Nessus
added 2023/06/07 12:0 a.m.28 views

EulerOS Virtualization 2.11.0 : qemu (EulerOS-SA-2023-2134)

According to the versions of the qemu package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An infinite loop flaw was found in the USB xHCI controller emulation of QEMU while computing the length of the Transfer Request Bloc...

8.8CVSS7.2AI score0.02701EPSS
Exploits9References17
Rows per page
Query Builder