Lucene search
K

22 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-27025

Malware in sbrugna...

8.2CVSS6.8AI score0.0053EPSS
Exploits1References10
Tenable Nessus
Tenable Nessus
added 2024/08/06 12:0 a.m.27 views

CBL Mariner 2.0 Security Update: qemu / qemu-kvm (CVE-2021-3750)

The version of qemu / qemu-kvm installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-3750 advisory. - A DMA reentrancy issue was found in the USB EHCI controller emulation of QEMU. EHCI does not verify ...

8.2CVSS7.1AI score0.0053EPSS
Exploits1References2
Redos
Redos
added 2024/06/06 12:0 a.m.42 views

ROS-20240606-01

A vulnerability in QEMU's USB EHCI controller emulation is related to the lack of checks if the buffer pointer overlaps with the MMIO register when transmitting USB packets. the buffer pointer overlaps with the MMIO region when transmitting USB packets. Exploitation of the vulnerability could all...

8.2CVSS6.9AI score0.01405EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/02/29 12:0 a.m.38 views

CentOS 9 : qemu-kvm-8.0.0-8.el9

The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the qemu-kvm-8.0.0-8.el9 build changelog. - A DMA reentrancy issue was found in the USB EHCI controller emulation of QEMU. EHCI does not verify if the Buffer Pointer overlaps with...

8.2CVSS7.3AI score0.0053EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2024/01/25 12:0 a.m.41 views

RHEL 8 : virt:rhel and virt-devel:rhel (RHSA-2024:0404)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:0404 advisory. Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contai...

8.2CVSS7.4AI score0.01592EPSS
Exploits1References10
Tenable Nessus
Tenable Nessus
added 2023/11/21 12:0 a.m.66 views

Oracle Linux 8 : virt:ol / and / virt-devel:rhel (ELSA-2023-6980)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-6980 advisory. - Fix CVE-2022-2211 Denial of Service in --key parameter resolves: rhbz2101280 - Fixes: CVE-2022-40284 - Fixes: CVE-2021-46790, CVE-2022-30783,...

9.8CVSS6.8AI score0.01848EPSS
Exploits3References3
Tenable Nessus
Tenable Nessus
added 2023/11/14 12:0 a.m.65 views

RHEL 8 : virt:rhel and virt-devel:rhel (RHSA-2023:6980)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:6980 advisory. Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contai...

8.2CVSS6.8AI score0.0053EPSS
Exploits1References20
Tenable Nessus
Tenable Nessus
added 2023/09/28 12:0 a.m.38 views

SUSE SLES15: qemu / qemu-arm / qemu-audio-alsa / qemu-audio-oss / qemu-audio-pa / etc (SUSE-SU-2023:3800-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:3800-1 advisory. - CVE-2022-26354: Fixed a memory leak due to a missing virtqueue detach on error. bsc1198712 - CVE-2021-3929: Fixed an use-after-fr...

8.8CVSS6.9AI score0.01592EPSS
Exploits3References29
Tenable Nessus
Tenable Nessus
added 2023/06/07 12:0 a.m.28 views

EulerOS Virtualization 2.11.0 : qemu (EulerOS-SA-2023-2134)

According to the versions of the qemu package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An infinite loop flaw was found in the USB xHCI controller emulation of QEMU while computing the length of the Transfer Request Bloc...

8.8CVSS7.2AI score0.02701EPSS
Exploits9References17
OpenVAS
OpenVAS
added 2023/06/07 12:0 a.m.29 views

Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2023-2082)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.9AI score0.02701EPSS
Exploits9References2
OSV
OSV
added 2022/12/14 7:15 p.m.4 views

CVE-2022-31705

VMware ESXi, Workstation, and Fusion contain a heap out-of-bounds write vulnerability in the USB 2.0 controller EHCI. A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual machine's VMX process running on the host. On ESX...

8.2CVSS6.2AI score0.01546EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2022/12/12 12:0 a.m.36 views

Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS / 22.04 LTS : QEMU vulnerabilities (USN-5772-1)

The remote Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5772-1 advisory. It was discovered that QEMU incorrectly handled bulk transfers from SPICE clients. A remote attacker could use this...

8.5CVSS7.1AI score0.02904EPSS
Exploits3References7
Tenable Nessus
Tenable Nessus
added 2022/11/22 12:0 a.m.35 views

Oracle Linux 9 : qemu-kvm (ELSA-2022-7967)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-7967 advisory. - Resolves: bz1951522 CVE-2021-3507 qemu-kvm: QEMU: fdc: heap buffer overflow in DMA read data transfers rhel-9.0 Tenable has extracted the preceding...

8.2CVSS7.1AI score0.0053EPSS
Exploits4References5
Tenable Nessus
Tenable Nessus
added 2022/07/29 12:0 a.m.346 views

EulerOS Virtualization 2.9.0 : qemu (EulerOS-SA-2022-2213)

According to the versions of the qemu package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An improper locking issue was found in the virStoragePoolLookupByTargetPath API of libvirt. It occurs in the...

8.2CVSS6.8AI score0.01334EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2022/07/14 12:0 a.m.53 views

EulerOS Virtualization 2.10.1 : qemu (EulerOS-SA-2022-2120)

According to the versions of the qemu package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A DMA reentrancy issue was found in the USB EHCI controller emulation of QEMU. EHCI does not verify if the Buffer Pointer overlaps...

8.2CVSS7.1AI score0.0053EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2022/07/14 12:0 a.m.38 views

Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2022-2120)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.2CVSS8.3AI score0.0053EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2022/05/18 10:39 p.m.62 views

CVE-2021-3750

A DMA reentrancy issue was found in the USB EHCI controller emulation of QEMU. EHCI does not verify if the Buffer Pointer overlaps with its MMIO region when it transfers the USB packets. Crafted content may be written to the controller's registers and trigger undesirable actions such as reset whi...

8.2CVSS2.9AI score0.0053EPSS
Exploits1References5
NVD
NVD
added 2022/05/02 7:15 p.m.26 views

CVE-2021-3750

A DMA reentrancy issue was found in the USB EHCI controller emulation of QEMU. EHCI does not verify if the Buffer Pointer overlaps with its MMIO region when it transfers the USB packets. Crafted content may be written to the controller's registers and trigger undesirable actions such as reset whi...

8.2CVSS0.0053EPSS
Exploits1References5
OSV
OSV
added 2022/05/02 7:15 p.m.39 views

CVE-2021-3750

A DMA reentrancy issue was found in the USB EHCI controller emulation of QEMU. EHCI does not verify if the Buffer Pointer overlaps with its MMIO region when it transfers the USB packets. Crafted content may be written to the controller's registers and trigger undesirable actions such as reset whi...

8.2CVSS7.3AI score
Exploits0References5
UbuntuCve
UbuntuCve
added 2022/05/02 7:15 p.m.52 views

CVE-2021-3750

A DMA reentrancy issue was found in the USB EHCI controller emulation of QEMU. EHCI does not verify if the Buffer Pointer overlaps with its MMIO region when it transfers the USB packets. Crafted content may be written to the controller's registers and trigger undesirable actions such as reset whi...

8.2CVSS7AI score0.0053EPSS
Exploits1References2
Rows per page
Query Builder