Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:40806
HistoryJun 06, 2023 - 11:25 a.m.

Out-of-bounds Write

2023-06-0611:25:43
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
14
qemu
vulnerability
lsi53c895a
dma-mmio
memory corruption

CVSS3

6

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H

EPSS

0

Percentile

5.1%

qemu is vulnerable to Out-of-bounds Write. A vulnerability within the ‘lsi53c895a’ device causes a DMA-MMIO reentrancy problem which may result in memory corruption bugs.

Affected configurations

Vulners
Node
-qemu\Match3.188.0.0-r0
OR
-qemu\Match3.188.0.0-r1
OR
-qemu\Match3.188.0.0-r2
OR
-qemu\Match3.188.0.0-r3
OR
-qemu\Matchedge7.0.0-r0
OR
-qemu\Matchedge5.2.0-r2
OR
-qemu\Matchedge7.2.1-r1
OR
-qemu\Matchedge7.1.0-r3
OR
-qemu\Matchedge7.1.0-r1
OR
-qemu\Matchedge7.0.0-r1
OR
-qemu\Matchedge6.0.0-r3
OR
-qemu\Matchedge8.0.0-r1
OR
-qemu\Matchedge8.0.0-r0
OR
-qemu\Matchedge6.2.0-r5
OR
-qemu\Matchedge6.0.0-r2
OR
-qemu\Matchedge7.1.0-r4
OR
-qemu\Matchedge7.1.0-r7
OR
-qemu\Matchedge7.2.1-r2
OR
-qemu\Matchedge7.2.0-r0
OR
-qemu\Matchedge8.0.0-r4
OR
-qemu\Matchedge8.0.0-r2
OR
-qemu\Matchedge5.2.0-r3
OR
-qemu\Matchedge6.1.0-r4
OR
-qemu\Matchedge5.0.0-r0
OR
-qemu\Matchedge6.1.0-r0
OR
-qemu\Matchedge5.2.0-r4
OR
-qemu\Matchedge6.0.0-r4
OR
-qemu\Matchedge6.2.0-r2
OR
-qemu\Matchedge6.1.0-r1
OR
-qemu\Matchedge6.0.0-r5
OR
-qemu\Matchedge6.2.0-r3
OR
-qemu\Matchedge4.2.0-r2
OR
-qemu\Matchedge6.1.0-r3
OR
-qemu\Matchedge7.1.0-r2
OR
-qemu\Matchedge8.0.0-r5
OR
-qemu\Matchedge6.2.0-r1
OR
-qemu\Matchedge6.2.0-r4
OR
-qemu\Matchbookworm1\6.1+dfsg-6
OR
-qemu\Matchsid1\5.1+dfsg-4+b2
OR
-qemu\Matchsid1\5.1+dfsg-4+b1
OR
-qemu\Matchsid1\5.1+dfsg-4
OR
-qemu\Matchbuster1\3.1+dfsg-8+deb10u8
OR
-qemu\Matchbullseye1\5.1+dfsg-4+b1
OR
-qemu\Matchbullseye1\5.1+dfsg-4
OR
-qemu\Match3.188.0.0-r0
OR
-qemu\Match3.188.0.0-r1
OR
-qemu\Match3.188.0.0-r2
OR
-qemu\Match3.188.0.0-r3
OR
-qemu\Matchedge7.0.0-r0
OR
-qemu\Matchedge5.2.0-r2
OR
-qemu\Matchedge7.2.1-r1
OR
-qemu\Matchedge7.1.0-r3
OR
-qemu\Matchedge7.1.0-r1
OR
-qemu\Matchedge7.0.0-r1
OR
-qemu\Matchedge6.0.0-r3
OR
-qemu\Matchedge8.0.0-r1
OR
-qemu\Matchedge8.0.0-r0
OR
-qemu\Matchedge6.2.0-r5
OR
-qemu\Matchedge6.0.0-r2
OR
-qemu\Matchedge7.1.0-r4
OR
-qemu\Matchedge7.1.0-r7
OR
-qemu\Matchedge7.2.1-r2
OR
-qemu\Matchedge7.2.0-r0
OR
-qemu\Matchedge8.0.0-r4
OR
-qemu\Matchedge8.0.0-r2
OR
-qemu\Matchedge5.2.0-r3
OR
-qemu\Matchedge6.1.0-r4
OR
-qemu\Matchedge5.0.0-r0
OR
-qemu\Matchedge6.1.0-r0
OR
-qemu\Matchedge5.2.0-r4
OR
-qemu\Matchedge6.0.0-r4
OR
-qemu\Matchedge6.2.0-r2
OR
-qemu\Matchedge6.1.0-r1
OR
-qemu\Matchedge6.0.0-r5
OR
-qemu\Matchedge6.2.0-r3
OR
-qemu\Matchedge4.2.0-r2
OR
-qemu\Matchedge6.1.0-r3
OR
-qemu\Matchedge7.1.0-r2
OR
-qemu\Matchedge8.0.0-r5
OR
-qemu\Matchedge6.2.0-r1
OR
-qemu\Matchedge6.2.0-r4
OR
-qemu\Matchbookworm1\6.1+dfsg-6
OR
-qemu\Matchsid1\5.1+dfsg-4+b2
OR
-qemu\Matchsid1\5.1+dfsg-4+b1
OR
-qemu\Matchsid1\5.1+dfsg-4
OR
-qemu\Matchbuster1\3.1+dfsg-8+deb10u8
OR
-qemu\Matchbullseye1\5.1+dfsg-4+b1
OR
-qemu\Matchbullseye1\5.1+dfsg-4
VendorProductVersionCPE
-qemu\3.18cpe:2.3:a:-:qemu\:3.18:8.0.0-r0:*:*:*:*:*:*:*
-qemu\3.18cpe:2.3:a:-:qemu\:3.18:8.0.0-r1:*:*:*:*:*:*:*
-qemu\3.18cpe:2.3:a:-:qemu\:3.18:8.0.0-r2:*:*:*:*:*:*:*
-qemu\3.18cpe:2.3:a:-:qemu\:3.18:8.0.0-r3:*:*:*:*:*:*:*
-qemu\edgecpe:2.3:a:-:qemu\:edge:7.0.0-r0:*:*:*:*:*:*:*
-qemu\edgecpe:2.3:a:-:qemu\:edge:5.2.0-r2:*:*:*:*:*:*:*
-qemu\edgecpe:2.3:a:-:qemu\:edge:7.2.1-r1:*:*:*:*:*:*:*
-qemu\edgecpe:2.3:a:-:qemu\:edge:7.1.0-r3:*:*:*:*:*:*:*
-qemu\edgecpe:2.3:a:-:qemu\:edge:7.1.0-r1:*:*:*:*:*:*:*
-qemu\edgecpe:2.3:a:-:qemu\:edge:7.0.0-r1:*:*:*:*:*:*:*
Rows per page:
1-10 of 441

CVSS3

6

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H

EPSS

0

Percentile

5.1%