Vulnerabilities > Qemu > Qemu > 8.1.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-04-10 | CVE-2024-3567 | A flaw was found in QEMU. | 5.5 |
| 2024-01-12 | CVE-2023-6683 | NULL Pointer Dereference vulnerability in multiple products A flaw was found in the QEMU built-in VNC server while processing ClientCutText messages. | 6.5 |
| 2024-01-02 | CVE-2023-6693 | Out-of-bounds Write vulnerability in multiple products A stack based buffer overflow was found in the virtio-net device of QEMU. | 5.3 |
| 2023-11-03 | CVE-2023-5088 | Improper Synchronization vulnerability in multiple products A bug in QEMU could cause a guest I/O operation otherwise addressed to an arbitrary disk offset to be targeted to offset 0 instead (potentially overwriting the VM's boot code). | 7.0 |
| 2023-07-24 | CVE-2023-3019 | Use After Free vulnerability in multiple products A DMA reentrancy issue leading to a use-after-free error was found in the e1000e NIC emulation code in QEMU. | 6.5 |
| 2022-08-26 | CVE-2022-0216 | A use-after-free vulnerability was found in the LSI53C895A SCSI Host Bus Adapter emulation of QEMU. | 4.4 |
| 2021-06-02 | CVE-2020-35503 | A NULL pointer dereference flaw was found in the megasas-gen2 SCSI host bus adapter emulation of QEMU in versions before and including 6.0. | 6.0 |
| 2021-06-02 | CVE-2021-3544 | Memory Leak vulnerability in multiple products Several memory leaks were found in the virtio vhost-user GPU device (vhost-user-gpu) of QEMU in versions up to and including 6.0. | 6.5 |
| 2021-06-02 | CVE-2021-3545 | Use of Uninitialized Resource vulnerability in multiple products An information disclosure vulnerability was found in the virtio vhost-user GPU device (vhost-user-gpu) of QEMU in versions up to and including 6.0. | 6.5 |
| 2021-06-02 | CVE-2021-3546 | Out-of-bounds Write vulnerability in multiple products An out-of-bounds write vulnerability was found in the virtio vhost-user GPU device (vhost-user-gpu) of QEMU in versions up to and including 6.0. | 8.2 |