Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-fjg4-4wq7-6hrq

Опубликовано: 13 мая 2022
Источник: github
Github: Не прошло ревью

Описание

The usb_device_post_load function in hw/usb/bus.c in QEMU before 1.7.2 might allow remote attackers to execute arbitrary code via a crafted savevm image, related to a negative setup_len or setup_index value.

The usb_device_post_load function in hw/usb/bus.c in QEMU before 1.7.2 might allow remote attackers to execute arbitrary code via a crafted savevm image, related to a negative setup_len or setup_index value.

Ссылки

EPSS

Процентиль: 82%
0.01728
Низкий

CVE ID

CVE-2013-4541

Дефекты

CWE-119

Связанные уязвимости

ubuntu логотип

CVE-2013-4541

ubuntu
почти 11 лет назад

The usb_device_post_load function in hw/usb/bus.c in QEMU before 1.7.2 might allow remote attackers to execute arbitrary code via a crafted savevm image, related to a negative setup_len or setup_index value.

redhat логотип

CVE-2013-4541

redhat
больше 11 лет назад

The usb_device_post_load function in hw/usb/bus.c in QEMU before 1.7.2 might allow remote attackers to execute arbitrary code via a crafted savevm image, related to a negative setup_len or setup_index value.

nvd логотип

CVE-2013-4541

nvd
почти 11 лет назад

The usb_device_post_load function in hw/usb/bus.c in QEMU before 1.7.2 might allow remote attackers to execute arbitrary code via a crafted savevm image, related to a negative setup_len or setup_index value.

debian логотип

CVE-2013-4541

debian
почти 11 лет назад

The usb_device_post_load function in hw/usb/bus.c in QEMU before 1.7.2 ...

oracle-oval логотип

ELSA-2014-0743

oracle-oval
около 11 лет назад

ELSA-2014-0743: qemu-kvm security and bug fix update (MODERATE)

EPSS

Процентиль: 82%
0.01728
Низкий

CVE ID

CVE-2013-4541

Дефекты

CWE-119