Denial Of Service (DoS)

🗓️ 21 Sep 2020 06:23:30Reported by Veracode Vulnerability DatabaseType

QEMU denial of service vulnerability in es1370_transfer_audi

Reporter	Title	Published	Views	Family All 111
AlpineLinux	CVE-2020-13361	28 May 202013:42	–	alpinelinux
BDU FSTEC	The vulnerability of QEMU’s emulation software lies in its ability to write beyond the buffer boundaries, allowing attackers to compromise data integrity and cause service failures.	13 Jul 202100:00	–	bdu_fstec
CBLMariner	CVE-2020-13361 affecting package qemu-kvm 4.2.0-48	30 Nov 202019:31	–	cbl_mariner
Circl	CVE-2020-13361	28 May 202018:55	–	circl
CNVD	QEMU Buffer Overflow Vulnerability (CNVD-2020-31087)	29 May 202000:00	–	cnvd
CVE	CVE-2020-13361	28 May 202013:42	–	cve
Cvelist	CVE-2020-13361	28 May 202013:42	–	cvelist
Debian	[SECURITY] [DLA 2262-1] qemu security update	29 Jun 202020:49	–	debian
Debian	[SECURITY] [DLA 2288-1] qemu security update	26 Jul 202011:51	–	debian
Debian	[SECURITY] [DSA 4728-1] qemu security update	19 Jul 202018:01	–	debian

Vulners

Node

focal focalMatch1:4.2-3ubuntu6debian

AND

xenial xenialMatch1:2.5+dfsg-5ubuntu10debian

AND

google bionicMatch1:2.11+dfsg-1ubuntu7debian

AND

qemu qemuMatch1:2.8+dfsg-6+deb9u9debian

AND

qemu qemuMatch5.0.0-r0os

AND

qemu qemuMatch4.2.0-r2os

AND

Source	Link
lists	www.lists.debian.org/debian-lts-announce/2020/06/msg00032.html
lists	www.lists.debian.org/debian-lts-announce/2020/07/msg00020.html
debian	www.debian.org/security/2020/dsa-4728
security	www.security.gentoo.org/glsa/202011-09
lists	www.lists.gnu.org/archive/html/qemu-devel/2020-05/msg03983.html
security	www.security.netapp.com/advisory/ntap-20200608-0003/
security-tracker	www.security-tracker.debian.org/tracker/CVE-2020-13361
openwall	www.openwall.com/lists/oss-security/2020/05/28/1
lists	www.lists.opensuse.org/opensuse-security-announce/2020-07/msg00086.html
usn	www.usn.ubuntu.com/4467-1/

29 Nov 2022 12:07Current

4.3Medium risk

Vulners AI Score4.3

CVSS 23.3

CVSS 3.13.9

EPSS0.0037