Vulnerabilities > Qemu > High

DATE CVE VULNERABILITY TITLE RISK
2021-08-05 CVE-2021-3682 Release of Invalid Pointer or Reference vulnerability in multiple products
A flaw was found in the USB redirector device emulation of QEMU in versions prior to 6.1.0-rc2.
network
high complexity
qemu redhat debian CWE-763
8.5
2021-06-02 CVE-2021-3546 Out-of-bounds Write vulnerability in multiple products
An out-of-bounds write vulnerability was found in the virtio vhost-user GPU device (vhost-user-gpu) of QEMU in versions up to and including 6.0.
local
low complexity
qemu debian CWE-787
8.2
2021-05-28 CVE-2013-4536 Improper Privilege Management vulnerability in Qemu
An user able to alter the savevm data (either on the disk or over the wire during migration) could use this flaw to to corrupt QEMU process memory on the (destination) host, which could potentially result in arbitrary code execution on the host with the privileges of the QEMU process.
local
low complexity
qemu CWE-269
7.8
2021-05-13 CVE-2021-20181 Race Condition vulnerability in multiple products
A race condition flaw was found in the 9pfs server implementation of QEMU up to and including 5.2.0.
local
high complexity
qemu debian CWE-362
7.5
2021-01-28 CVE-2020-35517 Improper Privilege Management vulnerability in Qemu
A flaw was found in qemu.
local
low complexity
qemu CWE-269
8.2
2020-02-11 CVE-2013-4535 Improper Input Validation vulnerability in multiple products
The virtqueue_map_sg function in hw/virtio/virtio.c in QEMU before 1.7.2 allows remote attackers to execute arbitrary files via a crafted savevm image, related to virtio-block or virtio-serial read.
local
low complexity
qemu redhat CWE-20
8.8
2020-01-21 CVE-2020-7211 Path Traversal vulnerability in multiple products
tftp.c in libslirp 4.1.0, as used in QEMU 4.2.0, does not prevent ..\ directory traversal on Windows.
network
low complexity
libslirp-project qemu CWE-22
7.5
2020-01-02 CVE-2013-4532 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
Qemu 1.1.2+dfsg to 2.1+dfsg suffers from a buffer overrun which could potentially result in arbitrary code execution on the host with the privileges of the QEMU process.
local
low complexity
qemu canonical debian CWE-119
7.8
2019-12-31 CVE-2019-20175 Improper Check for Unusual or Exceptional Conditions vulnerability in Qemu
An issue was discovered in ide_dma_cb() in hw/ide/core.c in QEMU 2.4.0 through 4.2.0.
network
low complexity
qemu CWE-754
7.5
2019-12-30 CVE-2013-2016 Improper Privilege Management vulnerability in multiple products
A flaw was found in the way qemu v1.3.0 and later (virtio-rng) validates addresses when guest accesses the config space of a virtio device.
local
low complexity
qemu debian novell CWE-269
7.8