Lucene search
Veracode Vulnerability DatabaseVERACODE:43079HistorySep 02, 2023 - 1:23 a.m.
Denial Of Service (DoS)
2023-09-0201:23:03
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
denial of service
qemu
nvme
0.0004 Low
EPSS
Percentile
10.1%
qemu is vulnerable to Denial of Service (DoS) attacks. The vulnerability exists in the nvme_directive_receive function in the hw/nvme/ctrl.c file. The function is responsible for receiving a directive from an NVMe controller. The vulnerability occurs when the function tries to access a NULL pointer. This can cause QEMU to crash.
| CPE | Name | Operator | Version |
|---|---|---|---|
| qemu:sid | eq | 1:5.1+dfsg-4+b2 | |
| qemu:sid | eq | 1:5.1+dfsg-4 | |
| qemu:sid | eq | 1:5.1+dfsg-4+b1 | |
| qemu:sid | eq | 1:5.1+dfsg-4+b2 | |
| qemu:sid | eq | 1:5.1+dfsg-4 | |
| qemu:sid | eq | 1:5.1+dfsg-4+b1 |
Related
cve
cve
CVE-2023-40360
2023-08-14 18:15:11
osv
osv
CVE-2023-40360
2023-08-14 18:15:11
ubuntucve
ubuntucve
CVE-2023-40360
2023-08-14 00:00:00
prion
prion
Null pointer dereference
2023-08-14 18:15:00
cvelist
cvelist
CVE-2023-40360
2023-08-14 00:00:00
debiancve
debiancve
CVE-2023-40360
2023-08-14 18:15:11
redhatcve
redhatcve
CVE-2023-40360
2023-08-22 17:50:59
openvas
openvas
Ubuntu: Security Advisory (USN-6567-1)
2024-01-09 00:00:00