Vulnerabilities > Qemu
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-03-23 | CVE-2021-3392 | Use After Free vulnerability in multiple products A use-after-free flaw was found in the MegaRAID emulator of QEMU. | 3.2 |
| 2021-03-18 | CVE-2021-3416 | A potential stack overflow via infinite loop issue was found in various NIC emulators of QEMU in versions up to and including 5.2.0. | 6.0 |
| 2021-03-09 | CVE-2021-20255 | Uncontrolled Recursion vulnerability in multiple products A stack overflow via an infinite recursion vulnerability was found in the eepro100 i8255x device emulator of QEMU. | 5.5 |
| 2021-03-09 | CVE-2021-20263 | Unspecified vulnerability in Qemu A flaw was found in the virtio-fs shared file system daemon (virtiofsd) of QEMU. | 3.3 |
| 2021-02-25 | CVE-2021-20203 | Integer Overflow or Wraparound vulnerability in multiple products An integer overflow issue was found in the vmxnet3 NIC emulator of the QEMU for versions up to v5.2.0. | 3.2 |
| 2021-01-30 | CVE-2020-17380 | Out-of-bounds Write vulnerability in multiple products A heap-based buffer overflow was found in QEMU through 5.0.0 in the SDHCI device emulation support. | 6.3 |
| 2021-01-28 | CVE-2020-35517 | Unspecified vulnerability in Qemu A flaw was found in qemu. | 8.2 |
| 2021-01-26 | CVE-2020-29443 | Out-of-bounds Read vulnerability in multiple products ide_atapi_cmd_reply_end in hw/ide/atapi.c in QEMU 5.1.0 allows out-of-bounds read access because a buffer index is not validated. | 3.9 |
| 2020-12-31 | CVE-2020-11947 | Out-of-bounds Read vulnerability in Qemu 4.1.0 iscsi_aio_ioctl_cb in block/iscsi.c in QEMU 4.1.0 has a heap-based buffer over-read that may disclose unrelated information from process memory to an attacker. | 3.8 |
| 2020-12-31 | CVE-2019-20808 | Out-of-bounds Read vulnerability in Qemu 4.1.0 In QEMU 4.1.0, an out-of-bounds read flaw was found in the ATI VGA implementation. | 6.5 |