Логотип exploitDog
bind:CVE-2018-16867
Консоль
Логотип exploitDog

exploitDog

bind:CVE-2018-16867
Поиск уязвимостей по источнику БДУ ФСТЭК

БДУ ФСТЭК

Поиск уязвимостей по источнику Microsoft MSRC

Microsoft MSRC

Поиск уязвимостей по источнику NVD

NVD

Поиск уязвимостей по источнику Oracle ELSA

Oracle ELSA

Поиск уязвимостей по источнику Red Hat CVE

Red Hat CVE

Поиск уязвимостей по источнику РЕД ОС

РЕД ОС

Поиск уязвимостей по источнику Rocky RLSA

Rocky RLSA

Поиск уязвимостей по источнику SUSE CVRF

SUSE CVRF

Поиск уязвимостей по источнику Ubuntu

Ubuntu

Поиск уязвимостей по источнику Debian

Debian

Поиск уязвимостей по источнику Github

Github

Количество 10

Количество 10

ubuntu логотип

CVE-2018-16867

больше 6 лет назад

A flaw was found in qemu Media Transfer Protocol (MTP) before version 3.1.0. A path traversal in the in usb_mtp_write_data function in hw/usb/dev-mtp.c due to an improper filename sanitization. When the guest device is mounted in read-write mode, this allows to read/write arbitrary files which may lead do DoS scenario OR possibly lead to code execution on the host.

CVSS3: 7.8
EPSS: Низкий
redhat логотип

CVE-2018-16867

больше 6 лет назад

A flaw was found in qemu Media Transfer Protocol (MTP) before version 3.1.0. A path traversal in the in usb_mtp_write_data function in hw/usb/dev-mtp.c due to an improper filename sanitization. When the guest device is mounted in read-write mode, this allows to read/write arbitrary files which may lead do DoS scenario OR possibly lead to code execution on the host.

CVSS3: 7
EPSS: Низкий
nvd логотип

CVE-2018-16867

больше 6 лет назад

A flaw was found in qemu Media Transfer Protocol (MTP) before version 3.1.0. A path traversal in the in usb_mtp_write_data function in hw/usb/dev-mtp.c due to an improper filename sanitization. When the guest device is mounted in read-write mode, this allows to read/write arbitrary files which may lead do DoS scenario OR possibly lead to code execution on the host.

CVSS3: 7.8
EPSS: Низкий
debian логотип

CVE-2018-16867

больше 6 лет назад

A flaw was found in qemu Media Transfer Protocol (MTP) before version ...

CVSS3: 7.8
EPSS: Низкий
github логотип

GHSA-6ch3-xhrw-w89m

около 3 лет назад

A flaw was found in qemu Media Transfer Protocol (MTP) before version 3.1.0. A path traversal in the in usb_mtp_write_data function in hw/usb/dev-mtp.c due to an improper filename sanitization. When the guest device is mounted in read-write mode, this allows to read/write arbitrary files which may lead do DoS scenario OR possibly lead to code execution on the host.

CVSS3: 7.8
EPSS: Низкий
oracle-oval логотип

ELSA-2018-4313

больше 6 лет назад

ELSA-2018-4313: qemu security update (IMPORTANT)

EPSS: Низкий
oracle-oval логотип

ELSA-2018-4312

больше 6 лет назад

ELSA-2018-4312: qemu security update (IMPORTANT)

EPSS: Низкий
fstec логотип

BDU:2020-03198

больше 6 лет назад

Уязвимость функции usb_mtp_write_data реализации протокола qemu Media Transfer Protocol эмулятора аппаратного обеспечения QEMU, позволяющая нарушителю вызвать отказ в обслуживании или выполнить произвольный код

CVSS3: 7
EPSS: Низкий
oracle-oval логотип

ELSA-2019-4556

больше 6 лет назад

ELSA-2019-4556: qemu security update (IMPORTANT)

EPSS: Низкий
oracle-oval логотип

ELSA-2019-4585

больше 6 лет назад

ELSA-2019-4585: qemu security update (IMPORTANT)

EPSS: Низкий

Уязвимостей на страницу

Уязвимость
CVSS
EPSS
Опубликовано
ubuntu логотип
CVE-2018-16867

A flaw was found in qemu Media Transfer Protocol (MTP) before version 3.1.0. A path traversal in the in usb_mtp_write_data function in hw/usb/dev-mtp.c due to an improper filename sanitization. When the guest device is mounted in read-write mode, this allows to read/write arbitrary files which may lead do DoS scenario OR possibly lead to code execution on the host.

CVSS3: 7.8
0%
Низкий
больше 6 лет назад
redhat логотип
CVE-2018-16867

A flaw was found in qemu Media Transfer Protocol (MTP) before version 3.1.0. A path traversal in the in usb_mtp_write_data function in hw/usb/dev-mtp.c due to an improper filename sanitization. When the guest device is mounted in read-write mode, this allows to read/write arbitrary files which may lead do DoS scenario OR possibly lead to code execution on the host.

CVSS3: 7
0%
Низкий
больше 6 лет назад
nvd логотип
CVE-2018-16867

A flaw was found in qemu Media Transfer Protocol (MTP) before version 3.1.0. A path traversal in the in usb_mtp_write_data function in hw/usb/dev-mtp.c due to an improper filename sanitization. When the guest device is mounted in read-write mode, this allows to read/write arbitrary files which may lead do DoS scenario OR possibly lead to code execution on the host.

CVSS3: 7.8
0%
Низкий
больше 6 лет назад
debian логотип
CVE-2018-16867

A flaw was found in qemu Media Transfer Protocol (MTP) before version ...

CVSS3: 7.8
0%
Низкий
больше 6 лет назад
github логотип
GHSA-6ch3-xhrw-w89m

A flaw was found in qemu Media Transfer Protocol (MTP) before version 3.1.0. A path traversal in the in usb_mtp_write_data function in hw/usb/dev-mtp.c due to an improper filename sanitization. When the guest device is mounted in read-write mode, this allows to read/write arbitrary files which may lead do DoS scenario OR possibly lead to code execution on the host.

CVSS3: 7.8
0%
Низкий
около 3 лет назад
oracle-oval логотип
ELSA-2018-4313

ELSA-2018-4313: qemu security update (IMPORTANT)

больше 6 лет назад
oracle-oval логотип
ELSA-2018-4312

ELSA-2018-4312: qemu security update (IMPORTANT)

больше 6 лет назад
fstec логотип
BDU:2020-03198

Уязвимость функции usb_mtp_write_data реализации протокола qemu Media Transfer Protocol эмулятора аппаратного обеспечения QEMU, позволяющая нарушителю вызвать отказ в обслуживании или выполнить произвольный код

CVSS3: 7
0%
Низкий
больше 6 лет назад
oracle-oval логотип
ELSA-2019-4556

ELSA-2019-4556: qemu security update (IMPORTANT)

больше 6 лет назад
oracle-oval логотип
ELSA-2019-4585

ELSA-2019-4585: qemu security update (IMPORTANT)

больше 6 лет назад

Уязвимостей на страницу