Vulnerabilities > Qemu
|2023-09-13||CVE-2023-2680|| Use After Free vulnerability in multiple products |
This CVE exists because of an incomplete fix for CVE-2021-3750.
| 8.2 |
|2023-09-13||CVE-2023-3255|| Infinite Loop vulnerability in multiple products |
A flaw was found in the QEMU built-in VNC server while processing ClientCutText messages.
| 6.5 |
|2023-09-13||CVE-2023-3301|| Race Condition vulnerability in multiple products |
A flaw was found in QEMU.
| 5.6 |
|2023-09-11||CVE-2023-42467|| Divide By Zero vulnerability in Qemu |
QEMU through 8.0.0 could trigger a division by zero in scsi_disk_reset in hw/scsi/scsi-disk.c because scsi_disk_emulate_mode_select does not prevent s->qdev.blocksize from being 256.
| 5.5 |
|2023-08-28||CVE-2020-24165|| Unspecified vulnerability in Qemu 4.2.0 |
An issue was discovered in TCG Accelerator in QEMU 4.2.0, allows local attackers to execute arbitrary code, escalate privileges, and cause a denial of service (DoS).
| 8.8 |
|2023-08-22||CVE-2022-36648|| NULL Pointer Dereference vulnerability in Qemu |
The hardware emulation in the of_dpa_cmd_add_l2_flood of rocker device model in QEMU, as used in 7.0.0 and earlier, allows remote attackers to crash the host qemu and potentially execute code on the host via execute a malformed program in the guest OS.
| 10.0 |
|2023-08-14||CVE-2023-40360|| NULL Pointer Dereference vulnerability in Qemu |
QEMU through 8.0.4 accesses a NULL pointer in nvme_directive_receive in hw/nvme/ctrl.c because there is no check for whether an endurance group is configured before checking whether Flexible Data Placement is enabled.
| 5.5 |
|2023-08-04||CVE-2023-4135|| Out-of-bounds Read vulnerability in multiple products |
A heap out-of-bounds memory read flaw was found in the virtual nvme device in QEMU.
| 6.5 |
|2023-08-03||CVE-2023-3180|| Out-of-bounds Write vulnerability in Qemu |
A flaw was found in the QEMU virtual crypto device while handling data encryption/decryption requests in virtio_crypto_handle_sym_req.
| 6.5 |
|2023-07-24||CVE-2023-1386|| Improper Preservation of Permissions vulnerability in multiple products |
A flaw was found in the 9p passthrough filesystem (9pfs) implementation in QEMU.
| 7.8 |