Vulnerabilities > Qemu > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-03-23 CVE-2021-3409 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
The patch for CVE-2020-17380/CVE-2020-25085 was found to be ineffective, thus making QEMU vulnerable to the out-of-bounds read/write access issues previously found in the SDHCI controller emulation code.
local
low complexity
qemu redhat fedoraproject debian CWE-119
5.7
2021-03-18 CVE-2021-3416 Infinite Loop vulnerability in multiple products
A potential stack overflow via infinite loop issue was found in various NIC emulators of QEMU in versions up to and including 5.2.0.
local
low complexity
qemu fedoraproject redhat debian CWE-835
6.0
2021-01-30 CVE-2020-17380 Out-of-bounds Write vulnerability in multiple products
A heap-based buffer overflow was found in QEMU through 5.0.0 in the SDHCI device emulation support.
local
low complexity
qemu debian CWE-787
6.3
2020-12-31 CVE-2019-20808 Out-of-bounds Read vulnerability in Qemu 4.1.0
In QEMU 4.1.0, an out-of-bounds read flaw was found in the ATI VGA implementation.
local
low complexity
qemu CWE-125
6.5
2020-12-08 CVE-2020-27821 Out-of-bounds Write vulnerability in multiple products
A flaw was found in the memory management API of QEMU during the initialization of a memory region cache.
local
low complexity
qemu debian CWE-787
6.0
2020-12-04 CVE-2020-28916 Infinite Loop vulnerability in multiple products
hw/net/e1000e_core.c in QEMU 5.0.0 has an infinite loop via an RX descriptor with a NULL buffer address.
local
low complexity
qemu debian CWE-835
5.5
2020-11-30 CVE-2020-25624 Out-of-bounds Read vulnerability in multiple products
hw/usb/hcd-ohci.c in QEMU 5.0.0 has a stack-based buffer over-read via values obtained from the host controller driver.
4.4
2020-11-06 CVE-2020-27617 Reachable Assertion vulnerability in multiple products
eth_get_gso_type in net/eth.c in QEMU 4.2.1 allows guest OS users to trigger an assertion failure.
network
low complexity
qemu debian CWE-617
4.0
2020-11-06 CVE-2020-27616 Incorrect Calculation vulnerability in Qemu 4.2.1
ati_2d_blt in hw/display/ati_2d.c in QEMU 4.2.1 can encounter an outside-limits situation in a calculation.
network
low complexity
qemu CWE-682
4.0
2020-09-25 CVE-2020-25625 Infinite Loop vulnerability in multiple products
hw/usb/hcd-ohci.c in QEMU 5.0.0 has an infinite loop when a TD list has a loop.
4.7