Логотип exploitDog
bind:"CVE-2021-3507" OR bind:"CVE-2021-3611" OR bind:"CVE-2021-3750" OR bind:"CVE-2021-4158"
Консоль
Логотип exploitDog

exploitDog

bind:"CVE-2021-3507" OR bind:"CVE-2021-3611" OR bind:"CVE-2021-3750" OR bind:"CVE-2021-4158"

Количество 64

Количество 64

suse-cvrf логотип

SUSE-SU-2022:3768-1

почти 3 года назад

Security update for qemu

EPSS: Низкий
github логотип

GHSA-rj8x-cp5p-j26r

около 3 лет назад

A stack overflow vulnerability was found in the Intel HD Audio device (intel-hda) of QEMU. A malicious guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition. The highest threat from this vulnerability is to system availability. This flaw affects QEMU versions prior to 7.0.0.

CVSS3: 6.5
EPSS: Низкий
fstec логотип

BDU:2022-05645

больше 3 лет назад

Уязвимость эмулятора аппаратного обеспечения QEMU, связанная с выходом операции за границы буфера в памяти, позволяющая нарушителю вызвать отказ в обслуживании

CVSS3: 5.5
EPSS: Низкий
ubuntu логотип

CVE-2021-4158

почти 3 года назад

A NULL pointer dereference issue was found in the ACPI code of QEMU. A malicious, privileged user within the guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition.

CVSS3: 6
EPSS: Низкий
redhat логотип

CVE-2021-4158

больше 3 лет назад

A NULL pointer dereference issue was found in the ACPI code of QEMU. A malicious, privileged user within the guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition.

CVSS3: 6
EPSS: Низкий
nvd логотип

CVE-2021-4158

почти 3 года назад

A NULL pointer dereference issue was found in the ACPI code of QEMU. A malicious, privileged user within the guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition.

CVSS3: 6
EPSS: Низкий
msrc логотип

CVE-2021-4158

12 месяцев назад

CVSS3: 6
EPSS: Низкий
debian логотип

CVE-2021-4158

почти 3 года назад

A NULL pointer dereference issue was found in the ACPI code of QEMU. A ...

CVSS3: 6
EPSS: Низкий
suse-cvrf логотип

SUSE-SU-2023:0761-1

больше 2 лет назад

Security update for qemu

EPSS: Низкий
ubuntu логотип

CVE-2021-3750

больше 3 лет назад

A DMA reentrancy issue was found in the USB EHCI controller emulation of QEMU. EHCI does not verify if the Buffer Pointer overlaps with its MMIO region when it transfers the USB packets. Crafted content may be written to the controller's registers and trigger undesirable actions (such as reset) while the device is still transferring packets. This can ultimately lead to a use-after-free issue. A malicious guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition, or potentially execute arbitrary code within the context of the QEMU process on the host. This flaw affects QEMU versions before 7.0.0.

CVSS3: 8.2
EPSS: Низкий
redhat логотип

CVE-2021-3750

почти 5 лет назад

A DMA reentrancy issue was found in the USB EHCI controller emulation of QEMU. EHCI does not verify if the Buffer Pointer overlaps with its MMIO region when it transfers the USB packets. Crafted content may be written to the controller's registers and trigger undesirable actions (such as reset) while the device is still transferring packets. This can ultimately lead to a use-after-free issue. A malicious guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition, or potentially execute arbitrary code within the context of the QEMU process on the host. This flaw affects QEMU versions before 7.0.0.

CVSS3: 7.5
EPSS: Низкий
nvd логотип

CVE-2021-3750

больше 3 лет назад

A DMA reentrancy issue was found in the USB EHCI controller emulation of QEMU. EHCI does not verify if the Buffer Pointer overlaps with its MMIO region when it transfers the USB packets. Crafted content may be written to the controller's registers and trigger undesirable actions (such as reset) while the device is still transferring packets. This can ultimately lead to a use-after-free issue. A malicious guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition, or potentially execute arbitrary code within the context of the QEMU process on the host. This flaw affects QEMU versions before 7.0.0.

CVSS3: 8.2
EPSS: Низкий
msrc логотип

CVE-2021-3750

около 3 лет назад

CVSS3: 8.2
EPSS: Низкий
debian логотип

CVE-2021-3750

больше 3 лет назад

A DMA reentrancy issue was found in the USB EHCI controller emulation ...

CVSS3: 8.2
EPSS: Низкий
suse-cvrf логотип

openSUSE-SU-2021:2442-1

около 4 лет назад

Security update for qemu

EPSS: Низкий
suse-cvrf логотип

SUSE-SU-2021:2442-1

около 4 лет назад

Security update for qemu

EPSS: Низкий
suse-cvrf логотип

SUSE-SU-2021:2563-1

около 4 лет назад

Security update for qemu

EPSS: Низкий
suse-cvrf логотип

SUSE-SU-2021:2546-1

около 4 лет назад

Security update for qemu

EPSS: Низкий
suse-cvrf логотип

SUSE-SU-2021:2461-1

около 4 лет назад

Security update for qemu

EPSS: Низкий
suse-cvrf логотип

SUSE-SU-2021:2428-1

около 4 лет назад

Security update for qemu

EPSS: Низкий

Уязвимостей на страницу

Уязвимость
CVSS
EPSS
Опубликовано
suse-cvrf логотип
SUSE-SU-2022:3768-1

Security update for qemu

почти 3 года назад
github логотип
GHSA-rj8x-cp5p-j26r

A stack overflow vulnerability was found in the Intel HD Audio device (intel-hda) of QEMU. A malicious guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition. The highest threat from this vulnerability is to system availability. This flaw affects QEMU versions prior to 7.0.0.

CVSS3: 6.5
0%
Низкий
около 3 лет назад
fstec логотип
BDU:2022-05645

Уязвимость эмулятора аппаратного обеспечения QEMU, связанная с выходом операции за границы буфера в памяти, позволяющая нарушителю вызвать отказ в обслуживании

CVSS3: 5.5
0%
Низкий
больше 3 лет назад
ubuntu логотип
CVE-2021-4158

A NULL pointer dereference issue was found in the ACPI code of QEMU. A malicious, privileged user within the guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition.

CVSS3: 6
0%
Низкий
почти 3 года назад
redhat логотип
CVE-2021-4158

A NULL pointer dereference issue was found in the ACPI code of QEMU. A malicious, privileged user within the guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition.

CVSS3: 6
0%
Низкий
больше 3 лет назад
nvd логотип
CVE-2021-4158

A NULL pointer dereference issue was found in the ACPI code of QEMU. A malicious, privileged user within the guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition.

CVSS3: 6
0%
Низкий
почти 3 года назад
msrc логотип
CVSS3: 6
0%
Низкий
12 месяцев назад
debian логотип
CVE-2021-4158

A NULL pointer dereference issue was found in the ACPI code of QEMU. A ...

CVSS3: 6
0%
Низкий
почти 3 года назад
suse-cvrf логотип
SUSE-SU-2023:0761-1

Security update for qemu

больше 2 лет назад
ubuntu логотип
CVE-2021-3750

A DMA reentrancy issue was found in the USB EHCI controller emulation of QEMU. EHCI does not verify if the Buffer Pointer overlaps with its MMIO region when it transfers the USB packets. Crafted content may be written to the controller's registers and trigger undesirable actions (such as reset) while the device is still transferring packets. This can ultimately lead to a use-after-free issue. A malicious guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition, or potentially execute arbitrary code within the context of the QEMU process on the host. This flaw affects QEMU versions before 7.0.0.

CVSS3: 8.2
0%
Низкий
больше 3 лет назад
redhat логотип
CVE-2021-3750

A DMA reentrancy issue was found in the USB EHCI controller emulation of QEMU. EHCI does not verify if the Buffer Pointer overlaps with its MMIO region when it transfers the USB packets. Crafted content may be written to the controller's registers and trigger undesirable actions (such as reset) while the device is still transferring packets. This can ultimately lead to a use-after-free issue. A malicious guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition, or potentially execute arbitrary code within the context of the QEMU process on the host. This flaw affects QEMU versions before 7.0.0.

CVSS3: 7.5
0%
Низкий
почти 5 лет назад
nvd логотип
CVE-2021-3750

A DMA reentrancy issue was found in the USB EHCI controller emulation of QEMU. EHCI does not verify if the Buffer Pointer overlaps with its MMIO region when it transfers the USB packets. Crafted content may be written to the controller's registers and trigger undesirable actions (such as reset) while the device is still transferring packets. This can ultimately lead to a use-after-free issue. A malicious guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition, or potentially execute arbitrary code within the context of the QEMU process on the host. This flaw affects QEMU versions before 7.0.0.

CVSS3: 8.2
0%
Низкий
больше 3 лет назад
msrc логотип
CVSS3: 8.2
0%
Низкий
около 3 лет назад
debian логотип
CVE-2021-3750

A DMA reentrancy issue was found in the USB EHCI controller emulation ...

CVSS3: 8.2
0%
Низкий
больше 3 лет назад
suse-cvrf логотип
openSUSE-SU-2021:2442-1

Security update for qemu

около 4 лет назад
suse-cvrf логотип
SUSE-SU-2021:2442-1

Security update for qemu

около 4 лет назад
suse-cvrf логотип
SUSE-SU-2021:2563-1

Security update for qemu

около 4 лет назад
suse-cvrf логотип
SUSE-SU-2021:2546-1

Security update for qemu

около 4 лет назад
suse-cvrf логотип
SUSE-SU-2021:2461-1

Security update for qemu

около 4 лет назад
suse-cvrf логотип
SUSE-SU-2021:2428-1

Security update for qemu

около 4 лет назад

Уязвимостей на страницу