Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

OSV
OSVadded 2026/04/17 1:3 p.m.4 views

OESA-2026-1992 qemu security update

QEMU is a FAST! processor emulator using dynamic translation to achieve good emulation speed. Security Fixes: A flaw was found in the virtio-crypto device of QEMU. A malicious guest operating system can exploit a missing length limit in the AKCIPHER path, leading to uncontrolled memory allocation...

5.5CVSS5.7AI score0.00005EPSS
Exploits0References2
SUSE CVE
SUSE CVEadded 2023/09/12 2:54 a.m.1 views

SUSE CVE-2023-42467

QEMU through 8.0.0 could trigger a division by zero in scsidiskreset in hw/scsi/scsi-disk.c because scsidiskemulatemodeselect does not prevent s-qdev.blocksize from being 256. This stops QEMU and the guest immediately...

4.4CVSS6.8AI score0.00017EPSS
Exploits1References4
RedHat Linux
RedHat Linuxadded 2022/07/01 12:25 a.m.5 views

QEMU: vhost-vsock: missing virtqueue detach on error can lead to memory leak

A flaw was found in the vhost-vsock device of QEMU. In case of error, an invalid element was not detached from the virtqueue before freeing its memory, leading to memory leakage and other unexpected results...

3.2CVSS6.7AI score0.00011EPSS
Exploits0References4
OSV
OSVadded 2021/02/23 12:0 a.m.1 views

UBUNTU-CVE-2021-20257

An infinite loop flaw was found in the e1000 NIC emulator of the QEMU. This issue occurs while processing transmits tx descriptors in processtxdesc if various descriptor fields are initialized with invalid values. This flaw allows a guest to consume CPU cycles on the host, resulting in a denial o...

6.5CVSS6.7AI score0.0008EPSS
Exploits0References5
OSV
OSVadded 2017/03/27 3:59 p.m.1 views

ALPINE-CVE-2017-5931

Integer overflow in hw/virtio/virtio-crypto.c in QEMU aka Quick Emulator allows local guest OS privileged users to cause a denial of service QEMU process crash or possibly execute arbitrary code on the host via a crafted virtio-crypto request, which triggers a heap-based buffer overflow...

8.8CVSS7.9AI score0.00072EPSS
Exploits0References1
CNVD
CNVDadded 2016/05/27 12:0 a.m.1 views

QEMU scsi information disclosure vulnerability

QEMU is a simulation processor software developed by French programmer Fabrice Bellard. The software is fast and cross-platform. An information disclosure vulnerability exists in QEMU's scsi. When the program is supported using the MegaRAID SAS 8708EM2 Host Bus Adapter emulator, an attacker can...

4.4CVSS7.9AI score0.00084EPSS
Exploits0References1
OSV
OSVadded 2014/02/20 12:0 a.m.0 views

UBUNTU-CVE-2013-4535

The virtqueuemapsg function in hw/virtio/virtio.c in QEMU before 1.7.2 allows remote attackers to execute arbitrary files via a crafted savevm image, related to virtio-block or virtio-serial read...

8.8CVSS7.1AI score0.0038EPSS
Exploits0References5
Rows per page
Query Builder