exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 20

CVE-2025-11234

9 месяцев назад

A flaw was found in QEMU. If the QIOChannelWebsock object is freed while it is waiting to complete a handshake, a GSource is leaked. This can lead to the callback firing later on and triggering a use-after-free in the use of the channel. This can be abused by a malicious client with network access to the VNC WebSocket port to cause a denial of service during the WebSocket handshake prior to the VNC client authentication.

CVSS3: 7.5

EPSS: Низкий

CVE-2025-11234

9 месяцев назад

CVSS3: 7.5

EPSS: Низкий

CVE-2025-11234

9 месяцев назад

CVSS3: 7.5

EPSS: Низкий

CVE-2025-11234

9 месяцев назад

Qemu-kvm: vnc websocket handshake use-after-free

CVSS3: 7.5

EPSS: Низкий

CVE-2025-11234

9 месяцев назад

A flaw was found in QEMU. If the QIOChannelWebsock object is freed whi ...

CVSS3: 7.5

EPSS: Низкий

SUSE-SU-2026:0436-1

4 месяца назад

Security update for qemu

EPSS: Низкий

RLSA-2026:5578

3 месяца назад

Moderate: virt:rhel and virt-devel:rhel security update

EPSS: Низкий

RLSA-2026:18772

24 дня назад

Moderate: qemu-kvm security update

EPSS: Низкий

RLSA-2026:1831

5 месяцев назад

Moderate: qemu-kvm security update

EPSS: Низкий

GHSA-hm8v-8c3v-cxfq

9 месяцев назад

CVSS3: 7.5

EPSS: Низкий

ELSA-2026-5578

3 месяца назад

ELSA-2026-5578: virt:ol and virt-devel:ol security update (MODERATE)

EPSS: Низкий

ELSA-2026-1831

5 месяцев назад

ELSA-2026-1831: qemu-kvm security update (MODERATE)

EPSS: Низкий

BDU:2025-16063

9 месяцев назад

Уязвимость эмулятора аппаратного обеспечения QEMU, связанная с использованием памяти после её освобождения, позволяющая нарушителю вызвать отказ в обслуживании

CVSS3: 7.5

EPSS: Низкий

openSUSE-SU-2025:20171-1

6 месяцев назад

Security update for qemu

EPSS: Низкий

SUSE-SU-2026:0288-1

5 месяцев назад

Security update for qemu

EPSS: Низкий

SUSE-SU-2026:0022-1

6 месяцев назад

Security update for qemu

EPSS: Низкий

ELSA-2026-50118

4 месяца назад

ELSA-2026-50118: virt:kvm_utils3 security update (MODERATE)

EPSS: Низкий

SUSE-SU-2026:2406-1

6 дней назад

Security update for qemu

EPSS: Низкий

SUSE-SU-2026:0039-1

6 месяцев назад

Security update for qemu

EPSS: Низкий

ELSA-2026-50241

около 2 месяцев назад

ELSA-2026-50241: qemu-kvm security update (MODERATE)

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2025-11234 A flaw was found in QEMU. If the QIOChannelWebsock object is freed while it is waiting to complete a handshake, a GSource is leaked. This can lead to the callback firing later on and triggering a use-after-free in the use of the channel. This can be abused by a malicious client with network access to the VNC WebSocket port to cause a denial of service during the WebSocket handshake prior to the VNC client authentication.	CVSS3: 7.5	1% Низкий	9 месяцев назад
CVE-2025-11234 A flaw was found in QEMU. If the QIOChannelWebsock object is freed while it is waiting to complete a handshake, a GSource is leaked. This can lead to the callback firing later on and triggering a use-after-free in the use of the channel. This can be abused by a malicious client with network access to the VNC WebSocket port to cause a denial of service during the WebSocket handshake prior to the VNC client authentication.	CVSS3: 7.5	1% Низкий	9 месяцев назад
CVE-2025-11234 A flaw was found in QEMU. If the QIOChannelWebsock object is freed while it is waiting to complete a handshake, a GSource is leaked. This can lead to the callback firing later on and triggering a use-after-free in the use of the channel. This can be abused by a malicious client with network access to the VNC WebSocket port to cause a denial of service during the WebSocket handshake prior to the VNC client authentication.	CVSS3: 7.5	1% Низкий	9 месяцев назад
CVE-2025-11234 Qemu-kvm: vnc websocket handshake use-after-free	CVSS3: 7.5	1% Низкий	9 месяцев назад
CVE-2025-11234 A flaw was found in QEMU. If the QIOChannelWebsock object is freed whi ...	CVSS3: 7.5	1% Низкий	9 месяцев назад
SUSE-SU-2026:0436-1 Security update for qemu		1% Низкий	4 месяца назад
RLSA-2026:5578 Moderate: virt:rhel and virt-devel:rhel security update		1% Низкий	3 месяца назад
RLSA-2026:18772 Moderate: qemu-kvm security update		1% Низкий	24 дня назад
RLSA-2026:1831 Moderate: qemu-kvm security update		1% Низкий	5 месяцев назад
GHSA-hm8v-8c3v-cxfq A flaw was found in QEMU. If the QIOChannelWebsock object is freed while it is waiting to complete a handshake, a GSource is leaked. This can lead to the callback firing later on and triggering a use-after-free in the use of the channel. This can be abused by a malicious client with network access to the VNC WebSocket port to cause a denial of service during the WebSocket handshake prior to the VNC client authentication.	CVSS3: 7.5	1% Низкий	9 месяцев назад
ELSA-2026-5578 ELSA-2026-5578: virt:ol and virt-devel:ol security update (MODERATE)			3 месяца назад
ELSA-2026-1831 ELSA-2026-1831: qemu-kvm security update (MODERATE)			5 месяцев назад
BDU:2025-16063 Уязвимость эмулятора аппаратного обеспечения QEMU, связанная с использованием памяти после её освобождения, позволяющая нарушителю вызвать отказ в обслуживании	CVSS3: 7.5	1% Низкий	9 месяцев назад
openSUSE-SU-2025:20171-1 Security update for qemu			6 месяцев назад
SUSE-SU-2026:0288-1 Security update for qemu			5 месяцев назад
SUSE-SU-2026:0022-1 Security update for qemu			6 месяцев назад
ELSA-2026-50118 ELSA-2026-50118: virt:kvm_utils3 security update (MODERATE)			4 месяца назад
SUSE-SU-2026:2406-1 Security update for qemu			6 дней назад
SUSE-SU-2026:0039-1 Security update for qemu			6 месяцев назад
ELSA-2026-50241 ELSA-2026-50241: qemu-kvm security update (MODERATE)			около 2 месяцев назад

Уязвимостей на страницу